Ethernet Switching
Highlighted
Ethernet Switching

Integrating Juniper switches with Cisco Identity Services Engine NAC solution

‎08-28-2018 02:14 AM

Hi Experts,

 

As per the new policy in our organization, we are in the middle of deploying a NAC Solution from Cisco.

 And as a part of that deployment, I need to integrate 90 Juniper switches with Cisco's NAC solution.

Before I could go ahead and start the integration, I am want to run tests with our test switches, to allow to formulate and come up with the results for the use cases like authentication, authorization, posture checks, guest and MAB.

 

I have been looking over the internet for reliable sources to get this deployment smoothly, but no luck.

Could you please assist me with this deployment and testing.

 

Any references to configuration documents and other material are highly appreciated.

4 REPLIES 4
Highlighted
Ethernet Switching

Re: Integrating Juniper switches with Cisco Identity Services Engine NAC solution

‎08-28-2018 03:56 AM

I assume the Cisco NAC solution will be using 802.1x/Radius.  In that case, probably best to start here from Juniper switch set-up perspective:

 

https://www.juniper.net/documentation/en_US/junos/topics/concept/802-1x-overview.html

 

I would also assume that Cisco NAC documentation would have some information regarding set-up and configuration with 3rd party non-Cisco switches.

Highlighted
Ethernet Switching

Re: Integrating Juniper switches with Cisco Identity Services Engine NAC solution

‎08-28-2018 04:18 AM

Thanks for the quick response on the documentation to follow.

There is one more thing that I would like to know is that, unlike the Cisco switches, where I could configure one ACL and have it called through NAC, is there something similar that I could do on Juniper switch as well?

Or is there a completly different approach that I need to take?

Highlighted
Ethernet Switching

Re: Integrating Juniper switches with Cisco Identity Services Engine NAC solution

‎08-28-2018 04:36 AM

In Juniper/Junos lingo, ACLs type functions are referred to as Firewall Filters.  For info look here:

 

https://www.juniper.net/documentation/en_US/junos/topics/concept/firewall-filter-qfx-series-overview...

 

Highlighted
Ethernet Switching

Re: Integrating Juniper switches with Cisco Identity Services Engine NAC solution

‎12-04-2018 07:51 PM

how about url web-redirection, as it is needed for ISE posture, does Juniper Switches support it? Haven't found any documentation about it.

Feedback