Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have two User Tenants (Named tenant-1 and tenant-2) on Cisco ACI, and we have integrated with the Firewall as L4-L7. The Firewall is connected to the Cisco ACI Leaf via the Port-Channel (vPC). We create two VDOMs (same physical) and two sub-interf...
I'm newly joined into the Cisco ACI world. We are planning to migrate from traditional to ACI infrastructure. In our environment, we have Palo Alto Firewall and we gonna integrate it as L4/L7 with one-arm mode. The service graph will be applied based...
I planned to deploy Cisco ISE as 802.1X and MAB authentication server in our environment. We have two units of Cisco N9K-C93180YC-EX version 9.2.2 running as server Switches. We would like to configure MAC Address Bypass authentication on connect to ...
I have installed the Cisco ISE with tacacs+ feature as authentication server. I have configured the policy and network resource. The I configured Cisco switch 2960 but I got fail authenticated when i use command "test aaa group ise-tacacs+ <mydomain>...
I''m implementing CIsco ISE for TACACS and Dot1x for endpoints authentication. We have 2 units of Cisco SNS3515 and we planned for HA deployment, one at DC and other one at DR. There are 2 different subnet ip address. I haven't been implemented Cisco...
@gbekmezi-DD wrote:
From the link below:
Note
Dot1x supports static port-channels.
Note
You must disable 802.1X on FEX and VPC ports, and the unsupported features.
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/sec...
