Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Looking for a way to send ACL permit or deny hits to syslog only. We currently have a few routers that we need to monitor traffic out to the internet. We need to see what is permitted and what is denied. Currently, it is set up with a log command on ...
Trying to work on implementing dot1x on our new 4500e switches and noticed that the command radius-server host is missing. I have done some searching, but have been unable to get a reason for why this command is missing. aaa-new-model is in the confi...
I am trying to create an Authorization Policy that will use the User Groups I have defined on ISE. I am unable to find the correct attribute in the conditional expression that will look at the ISE User Group. I have been able to make this work with a...
I am trying out a new QOS map and ran into dropped packets on our second site. The first site I implemented this on is working with no packet loss. The second site has two routers and both are randomly dropping packets. All sites are running Cisco 39...
Yes. So like Jan said above, you can't use it in the compound condition, but you can use it on the authorization policy page. Let me show you.
Where the arrow is on the main authorization page, replace "Any" with the local identity group or user. Th...
