You are here
SEC0208 - ISE 2.0 802.1X Switch Config with Identity Control Policy (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through 802.1X switch configuration using Cisco Identity Control Policy. We will go over switch general configurations before diving into detail on the structure of Cisco Common Classification Policy Language (C3PL) and perform command conversion from the legacy 'authentication' syntax. We will also look at the concept of Service Template and a support for Per-MAC VLAN Assignment.
Part 2 over this video covers Service Template, and Per-MAC VLAN Assignment
Topic:
-
Switch 802.1X Configuration
- AAA RADIUS and CoA
- ACL
- SNMP
- Syslog
- Device Sensor
- Device Tracking
- Cisco Common Classification Policy Language (C3PL)
- Legacy Syntax Conversion
- Service Template
- Per-MAC VLAN Assignment
Reference: IBNS 2.0 Deployment Guide
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
4 comments
PSN redundance
Hello Metha
It is a great video you done.
I would like to know, how to configure failover on two ISE node. To do ISE PSN redundance
PSN redundance
You just build a two node deployment each with Admin/Monitoring/Policy Service and configure you network devices to point to both IP addresses for RADIUS or TACACS.
Debug Commands
What debug commands are you using to see the authentication?
Debug Commands
Which debug output are you referring to?