View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

Home » Security » SEC0217 - ISE 2.0 TrustSec - SGT Assignment (Part 1)

SEC0217 - ISE 2.0 TrustSec - SGT Assignment (Part 1)

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
Category: 
Security
The video shows you how to create and assign Security Group Tag (SGT) to endpoints on Cisco ISE 2.0. We will configure dynamic SGT assignment as part of a successful 802.1X authentication as well as static assignment for devices or resources that do not participate in 802.1X. At the end of this lab, all entities that either need access or be accessed within a TrustSec domain will have SGT assigned.
 
Part 1 of this video covers SGT creation, mapping and assignment
 
Topic:
  • SGT Creation (Manual, System Assigned, Auto)
  • SGT Group Mapping
  • SGT-to-IP Mapping
  • SGT Assignment (Dynamic and Static)
  • Authorization Policy
  • 802.1X Authentication
Tag: 
ISE
ise 2.0
trustsec
sgt
802.1x

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
http://www.linkedin.com/in/methachiewanichakorn

7 comments

Submitted by hitenwala1 on Mon, 07/02/2018 - 00:04

Can you please provide me that which switch model number is supporting all TrustSec command ? i.e . cts, aaa , etc

Submitted by admin on Thu, 07/05/2018 - 20:05

Please check the link below for Trustsec supported switch

https://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networ...

Submitted by hitenwala1 on Mon, 07/23/2018 - 00:11

I have only one switch in my network . can i setup TrustSec domain and setup network segmentation with single switch in network ?

Submitted by admin on Mon, 07/23/2018 - 21:56

Yes you can. That switch can do both classification and enforcement. You just need to make sure the switch model can do all of the above.

Submitted by hitenwala1 on Wed, 07/25/2018 - 01:10

Thanks for reply.

Yes my switch model can do all of the above configuration but I am not able configure and not able to understand how to configure same thing with single switch.

If you provide me any article or any link that can guide the me same thing . i will really appreciate if you provide me anything regarding this .

Submitted by admin on Sat, 07/28/2018 - 12:21

You can watch our TrustSec videos SEC0216-221 for step-by-step configuration. Although we use two switches in the lab but you can accomplish everything on a single switch.

Submitted by hitenwala1 on Wed, 07/25/2018 - 23:57

Waiting for your reply.

Poll

Vote for the Next Video Series