Cisco Cisco Identity Services Engine 2.1
Required Configurations
A single Active Directory join point for abc.com is already configured. To add an additional untrusted Active Directory infrastructure:
1
Enter scope mode to add Initial_Scope.
2
Add a new join point for xyz.com.
Figure 1: Join Points Created Within Initial_Scope
3
Configure an authentication policy and select Initial_Scope as the result for all authentications.
Figure 2: Initial_Scope Selected as the Result in Authentication Policy
By performing the above configurations, you created a scope that configures Cisco ISE to search for users in either company’s Active
Directory. Scope allows a network to authenticate against multiple Active Directory infrastructures, even if they are completely
disconnected and/or do not trust each other.
Directory. Scope allows a network to authenticate against multiple Active Directory infrastructures, even if they are completely
disconnected and/or do not trust each other.
Multiple Tenants
Scenario
21