Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2635
Views
0
Helpful
1
Replies

ISE SGT with Firepower

yongwli
Cisco Employee
Cisco Employee

‎09-19-2017 09:11 AM - edited ‎03-11-2019 01:00 AM

Hi Experts,

Customer's access switches are HPE switches, they want Firepower to use ISE attribute in ACP, is it possible?

I guess we can define SGT in authorization policy, and switch don't have to support SGT, ISE will send SGT-IP mapping to Firepower. Am I right?

Thanks

DL

Labels:
0 Helpful
1 Reply 1

hslai
Cisco Employee
Cisco Employee

‎09-20-2017 09:58 AM

FMC 6.0 can subscribe to ISE via pxGrid for TrustSecMetaData in addition to SessionDirectory and EndpointProfileMetaData, and then use SGT in its access control rules. See How To: Integrate Firepower Management Center (FMC) 6.0 with ISE and TrustSec through pxGrid

0 Helpful
Customers Also Viewed These Support Documents