Cisco Cisco Identity Services Engine 2.0
If all the company’s domains were trusted, only a single join point is needed. But in this example, there are a number of untrusted
domains, so multiple join points are required.
domains, so multiple join points are required.
Figure 4: Define Scopes and Join Points for each Company
3
Configure policy sets to tie together the NDGs of a company to Active Directory scopes for authentication for a company. Each
company should also have its own policy so that authorization policy may be defined in the company’s own policy group.
company should also have its own policy so that authorization policy may be defined in the company’s own policy group.
Figure 5: Configure Policy Sets
23