Hi,
We have been running ISE 2.4 in distributed model. Recently we have added Airwatch MDM servers to ISE - connection status shows OK . I was sure that i will be able to check compliance or registration status of any device connecting to 802.1x en...
Hi,
I am under consideration of enabling profiling along with dot1x in our enviroment. However i have couple of questions regarding how actually profiling would work.
What are protocols allowed before 802.1x authentication. Are they CDP, STP, EAP...
Hi, I am trying figure out if it is possible at all to apply "split tunneling" based on dynamic access policy result.Lets imagine situation where:1. Cisco Secure Desktop pre-login policy is applied.2. Based on CSD result the dynamic access policy can...
For those who are interested in of fix this problem. I got this fix from Cisco TAC. Apologies @Jason Kunst, but you haven’t provided any reasonable solution, I don’t get why you approved your help as "solution" as in my opinion it’s not.
Anyway. Se...
Hi Jason,
Do you mean Authorization rule? This is how my AuthZ rule looks like but it never has been matched. Two upper conditions are working properly if i remove two of the bottom related to MDM.
Hey Craig,
Could you elaborate more Load Balancer matching based on Session ID in URL?
We do have setup for Aruba using "Static Target" + CWA flow is going via Internet due to guest network is completly isolated enviroment. This cause that ISE sees...
Hi Yudong, This is the point of problem.I need assign user to group-policy based on results of Cisco Secure Desktop pre-check.I thought i can achieve this by DAP but it seems DAP has limited functionality and as you mentioned can overwite only select...
