I have Identity Collector integrated with AD and Cisco ISE.
The users' information coming from AD is based on logon names, while ISE pxGrid is based on UPNs.
When the users information from ISE is passed to the secure gateway, it can't find a match in AD.
For O365 compatibility, the UPNs are equal to the email addresses, while the logon names are in a different format so the IDC alias feature can't resolve the issue.
Is there a way to change the method IDC pareses the bulk connection table downloaded from Cisco ISE?
Any other ideas?
I logged a TAC case and was advised to change the IDC UserLoginAttr using GuiDBEdit under the relevant gateway, which didn't make any difference.