Hi,I'm wondering about all these cloud services out there dealing with AD federations to provide users / companies with easy access and SSO functionality. I appreciate all work on ISE features like SAML support - however, are there any thoughts how t...
We are implementing CISCO ISE in a large distributed deployment for 100K endpoints of a service provider.
We profile MAB devices using device-sensor feature on the Cisco switches.
So ISE profiling service gets all the CDP, LLDP, DHCP information a...
Hi,
need to understand the communication between ISE and AD for discussions with the AD guys.
From what I've learnt from documentation the following different users are:
ISE machine user
to join AD (permissions: search AD for ISE machine, create ISE...
Team,
trying to configure cdp on a MnT node - distributed design, all nodes cdp enabled successful, except this MnT one:
MnT does not accept configuring cdp...
Thanks,
Hagen
Yes you are right, ISE comes from the corporate NAC side - different to the cloud side. I will work on use case, shortly will have a confcall with dropbox and customer, hope this will shed some light...
Hi Jimmy,very helpful. Let me explain my understanding of typical SAML flow with target SSO:ISE asks and receives a security assertion from ldP. ISE will be able for policy decisions based on response of ldP (if ISE understands the sent attributes co...
Hi Jatin,
thanks for link posted, but that information is not sufficient.
To authenticate any client user/machine against AD an ordinary domain user with read access seems to be sufficient.
The documentation is speaking about join/leave/configuring I...
Javier,
Version 2.0.0.306 cumulative patch2 not installed yet.
derat-adm001/netman# sh ver
Cisco Application Deployment Engine OS Release: 2.3ADE-OS Build Version: 2.3.0.187ADE-OS System Architecture: x86_64
Copyright (c) 2005-2014 by Cisco Systems,...
Hello,
did a reload of System - after that I was able to configure cdp as expected:
cdp timer 60cdp holdtime 180cdp run GigabitEthernet 0!icmp echo on!derat-mnt001/netman# copy run startGenerating configuration...derat-mnt001/netman# sh cdp all
CDP ...