Menu

US Region

Grandmetric LLC
Brookfield Place Office
200 Vesey Street
New York, NY 10281
EIN: 98-1615498
Phone: +1 302 691 94 10

info@grandmetric.com

EMEA Region

GRANDMETRIC Sp. z o.o.
ul. Metalowa 5, 60-118 Poznań, Poland
NIP 7792433527
+48 61 271 04 43
info@grandmetric.com

Cisco ISE: 5. Adding NAD to ISE

Design & Configure

Cisco ISE: 5. Adding NAD to ISE

Technology: Network Security
Area: Access and Identity Management
Vendor: Cisco
Software: 2.1
Platform: ISE Virtual Appliance, ISE Physical Appliance

For ISE 3.0 setup, check ISE 3.0 NAD configuration

 

When the radius client (switch or wifi controller) wants to talk with radius it needs to be defined as a network access device (NAD) on the radius server (in our case ISE). Otherwise, every authentication try will fail. Before you add NAD to ISE you can define the structure of NAD for better organization. You can define Groups and NAD Locations and Types. These attributes can be used while building Authentication (AuthC) and Authorization (AuthZ) rules. To add a device:

 

  • Define Type e.g. Wireless

Adding NAD to ISE - define type

 

  • Define Location e.g. GrandmetricLabs

Adding NAD - Define locations

 

  • Define the device itself and add it to previously configured groups

adding NAD to ISE - define NAD

Author: Marcin Bialy
 
Grandmetric