Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1287
Views
0
Helpful
7
Replies

AAA configuration at C9800

Leftz
Level 4
Level 4

‎01-10-2023 07:20 AM - edited ‎01-10-2023 07:34 AM

Hello, In below AAA config, there are two ISE server 1 and 2 as one group. We like ISE-1 to be primary and ISE-2 secondary. But I cannot see any option for it on this page. Is this possible?  Anyone can share the experience? Thank you

 

Capture.PNG

1 person had this problem
0 Helpful
7 Replies 7

Mark Elsen
Hall of Fame
Hall of Fame

‎01-10-2023 07:45 AM

 

 - I think it will behave like that per default , you may verify this by examining the logs on both ISE servers , 

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Leftz
Level 4
Level 4
In response to Mark Elsen

‎01-10-2023 08:21 AM

@Mark Elsen thanks for your reply. what do you mean with "per default"? I want ISE-1 is configured as primary node, Is this possible? 

0 Helpful

Mark Elsen
Hall of Fame
Hall of Fame
In response to Leftz

‎01-10-2023 08:41 AM

 

 - If you go to the AAA Advanced tab , -> Global Config and leave Radius Server Load Balance disabled, then they will probably be used in the configured order. Also have a look at Radius Fallback , for settings related to dead server detection ,

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Leftz
Level 4
Level 4

‎01-10-2023 12:39 PM - edited ‎01-10-2023 01:10 PM

disabling Radius Server Load Balance might just disable load balance, but it might not define primary one, right? or we can say the first one is primary. The reason that we want ISE-1 as primary is because this node is local, so it would be fast. Thanks

0 Helpful

Mark Elsen
Hall of Fame
Hall of Fame
In response to Leftz

‎01-10-2023 11:07 PM

 

         >...or we can say the first one is primary.
               - Confirmed , 

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Sandeep Choudhary
VIP Alumni
VIP Alumni

‎01-11-2023 12:22 AM

Hi,

 

in IOS version  this feature was available but here its different. you basically define the servers and create a server group. This is not AireOS, so there is no primary/secondary/tertiary setting.

 

Regards

Dont forget to rate helpful posts

 

0 Helpful

Gaurav Kansal
Level 1
Level 1

‎02-03-2023 12:05 AM

Hi zshowip

You can create a server groups in WLC and there you can make ISE1 and ISE 2 Primary, secondary and call that group in WLAN.

Configuration > Security > AAA>Server/Server Group

Please reply if its helpful

Thanks

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card