Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
787
Views
0
Helpful
2
Replies

switch configuration with ISE

m-martynowski
Level 1
Level 1

‎06-28-2013 09:10 AM - edited ‎07-04-2021 12:18 AM

                   I have an ISE implementation going on and need a switch configuration that can fail open if the ISE (Radius) is unavailable.  I have some facilities on the WAN must continue to operate if the WAN service fails.  They will not have a local ISE policy server at the location, all authentication will occur over the WAN.  I think the authentication commands can handle this, just looking for a sample configuration if someone has done this.

Labels:
0 Helpful
2 Replies 2

mmangat
Level 1
Level 1

‎06-30-2013 08:18 PM

Hello,

Please have a look at the following Cisco doc for Switch Configuration Required to Support Cisco ISE Functions.

http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_sw_cnfg.pdf

You can also watch a couple of videos on you tube.

www.youtube.com/watch?v=MVTjRMOs6aQ

www.youtube.com/watch?v=iBDWs21yVeE

0 Helpful

Eduardo Aliaga
Level 4
Level 4
In response to mmangat

‎07-03-2013 06:26 AM

If you're using multi-auth, then you need this commands

interface Giga x/x/x

authentication host-mode multi-auth

authentication event server dead action reinitialize vlan

authentication event server dead action authorize voice

If you're using multi-domain then you need this commands.

interface Giga x/x/x

authentication host-mode multi-domain

authentication event server dead action authorize vlan

authentication event server dead action authorize voice

Please rate if this helps

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card