ISE Admin with AD Credential
Summary steps
1. ISE join AD
2. Enable admin access using AD
3. Configure Admin Group to AD group mapping
4. Set RBAC permission for the admin group
Detail Steps:
1. ISE join AD
Assume is already done, joined corp.local domain
AD group NetworkAdmins is added to ISE AD group list
2. Enable admin access using AD
3. Configure Admin Group to AD group mapping
4. Set RBAC permission for the admin group
Duplicate "Super Admin Policy" , create a new policy "AD Admin Policy" for group "AdminGroup-AD"
reference:
https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/116503-configure-product-00.html
Comments
Post a Comment