This section contains instructions on how to integrate Cisco ISE with RSA Cloud Authentication Service using RADIUS.
Procedure
- Sign in to Cisco ISE Admin GUI and go to Administration > Identity Management > External Identity Sources > RADIUS Token and click Add.

- In the General tab, enter a name and configure Connection tab as the following:
- Enable Secondary Server: Mark the checkbox to use a Secondary RSA Identity Router.
- Host IP: Specify the IP address of the RSA Identity Router Management Interface.
- Authentication Port: You must use the default port 1812.
- Server Timeout: Specify 60 seconds when using RSA Cloud Authentication Service.
- Connection Attempts: configure at 1.
Note: You need to add your RADIUS External Identity Source to an Identity Source Sequence if you want to use it with Guest Access Portal.

- Click Submit.
- Go to Administration > Identity Management > Identity Source Sequences and click Add or Edit.
- In the Authentication Search List section, select your RADIUS External Identity Source created in Step 1 and add it to the Selected window.

- Click Save.
Next Step: Proceed to the Use Case Configuration section for information on how to apply the RADIUS configuration to your use case.