I have ISE 1.2 and there an issue with windows remote access on the computer
I use remote access to give assistance to remote user
Issue description: The windows remote access are possible as much as the user’s assistance does not required to switch to an admin account In case a switch to admin account is done, the network connection is lost and I can no more continue unless the remote user reconnects again.
Please how can I configure ISE to permit remote acces and switch to administrator user session without loose conexion ?
So I am assuming that you are using "user only" based authentication. Correct? If so, that is the problem and it is a problem with Windows XP, 7 and even 8. It appears that during the RDP session, only machine credentials are sent, thus the 802.1x authentication fails. The workaround is to either switch the devices to perform "machine" based authentication or "user or machine" based authentication. In ISE then you will have to create a rule for machine based authentication to permit RDP based ports.
You can try to create a rule that allows machine based authentication and with that you can return an authorization profile that allows RDP and perhaps block everything else. Or you can just allow everything.
The rule in your screenshot above is referencing a user-based authentication.
Somewhat same issue I am also facing, we are running with ISE 1.4 and we are running with machine + user auth.
But once user gets login to his machine and try to access rdp or copying any file, and if he locked the machine then its stopping the session and use has to do log-off login to reinitiate the connection.
Currently end point are - windows 10 and window 8
We are using user or machine option in windows native supplicant,
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...