This section contains instructions on how to integrate Cisco ISE with RSA Cloud Authentication Service using RADIUS.

Procedure

1. Sign in to Cisco ISE Admin GUI and go to Administration > Identity Management > External Identity Sources > RADIUS Token and click Add.
   
2. In the General tab, enter a name and configure Connection tab as the following:
   • Enable Secondary Server: Mark the checkbox to use a Secondary RSA Identity Router.
   • Host IP: Specify the IP address of the RSA Identity Router Management Interface.
   • Authentication Port: You must use the default port 1812.
   • Server Timeout: Specify 60 seconds when using RSA Cloud Authentication Service.
   • Connection Attempts: configure at 1.
     Note: You need to add your RADIUS External Identity Source to an Identity Source Sequence if you want to use it with Guest Access Portal.
     
3. Click Submit.
4. Go to Administration > Identity Management > Identity Source Sequences and click Add or Edit.
5. In the Authentication Search List section, select your RADIUS External Identity Source created in Step 1 and add it to the Selected window.
   
6. Click Save.

Next Step: Proceed to the Use Case Configuration section for information on how to apply the RADIUS configuration to your use case.