Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Cisco ISE rule on two active directory domain with trust relationship

Dear all,

If a company has two domains (example abc.com and xyz.com) with trust relationship between these AD, can we setup authorization rules on Cisco ISE for example group IT in abc.com get access to server A and group IT in xyz.com get access to server B? Is this possible? I'm trying this in my lab but it still doesn't work. I connect to abc.com in the AD configuration on ISE and from there I am able to query xyz.com user group. But if I use the xyz.com group in authorization rule, it keeps getting bypassed by ISE. but running normally with abc.com. Please help.

Regards,

Ratna

Everyone's tags (4)
1 REPLY
Bronze

Cisco ISE rule on two active directory domain with trust relatio

306
Views
0
Helpful
1
Replies
CreatePlease to create content