Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,
Our current deployment is: authenticate AnyConnenct users using ISE local accounts and ISE as authorization server sending dACL to Firepower (according to user group):
AnyConnect -> Firepower -> ISE -> dACL -> Firepower
We tried to ...
Authentication is also successful when Radius acts as Token server, but after authentication ISE needs Group-ID to determine the necessary dACL. ISE waits it from Radius but Radius is not aware of it plus it should be sent via AV pair. ISE does not w...
