07-27-2018 05:26 PM
Hi All,
I am working on a SDA engagement and have a query regarding Oracle Access Manager (OAM).
The customer has vendors who brings their own laptops and access customer's network. The vendors laptops are not part of customer's AD. However they have vendor's credential in Oracle Access Manager (OAM). I understand, Oracle Access Manager (OAM) cannot be used for 802.1x authentication.
So thought of creating a separate SSID (open, CWA ) for the vendors, redirect them to a portal and integrate with Oracle Access Manager (OAM) for authentication. They would also like to provide differentiated access to various vendors. Any thought on what attributes can be used to provide segmentation here?
Many Thanks
V.Venkata Manikandan
07-27-2018 07:05 PM
OAM appears supporting both groups and attributes so we should use either.
From what our teams tested, here are the procedures in OAM:
07-30-2018 02:39 AM
Thanks Hsing.
Currently, I understand we cannot use OAM in identity store sequence. Any thoughts on why is this.
Many Thanks
V.Venkata Manikandan
07-30-2018 05:38 AM
AFAIK SAML is for web authentications so the limitation applies to all SAML IdP's. AnyConnect VPN using SAML IdP is possible today with ASA remote access VPN but it also needs to launch a web browser to the IdP portal as part of the authentication. Please discuss your specific requirements with ISE PM team.
07-27-2018 08:58 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide