We leverage Azure MFA for ISE/TACACS authentication. We had it setup in ACS 5.4 and migrated it to ISE. Simple to setup. We verify an network engineer is in the correct AD group and prompt them for second factor before they can log into a CLI for ...
I had this problem today using POE+ injectors from fs.com. I was able to get around it by disabling CDP and LLDP on the switchport the AP was plugged into before plugging in the AP. Note you don't have to disable CDP/LLDP on the AP or on the entire ...