About VS

VS · 12-09-2018

Hello, I have an ISE 2.2 p9 deployment. domain1.com AD joined to ISE and working well for our users. Another domain2.com is also connected to ISE as we use 2-way trust between domain1.com and domain2.com. domain1.com uses PEAP - this is our organiz...

VS · 10-23-2018

Hello, I have an ISE 2.2 p9 deployment. domain1.com AD joined to ISE and working well for our users. We have a new requirement where users of domain2.com will visit our offices, use our SSID and must be authenticated by our ISE. For this 2-way trust ...

VS · 07-21-2019

Please paste output of "sh run all"

VS · 12-14-2018

Thank you very much @Surendra, it started to work after importing the CA cert. From security perspective, am I supposed to do AD lookup too after the EAP-TLS machine/user cert check goes through? Whats the best practice? I am blanking at the mome...

VS · 12-09-2018

I can confirm that yes all ISE nodes needed to speak to the other domains as well. We had a firewall blocking the access, as soon as it was allowed authentication with the other domain's AD started working well.

Member Since	‎03-13-2018 03:41 AM
Date Last Visited	‎07-24-2019 02:49 AM
Posts	5

User Statistics

User Activity

EAP-TLS with multiple domains?

AD 2-way trust question

Re: Newly configured Catalyst 3850 L3 Switch not routing, Ip-helper not workin

Re: EAP-TLS with multiple domains?

Re: AD 2-way trust question