Identity Group Subscribe

Verification

This test verifies the ability of the third party system to subscribe to the ISE published identity topics and receive notifications.

Definition

Subscribing to the Identity Group topic allows pxGrid client to receive notifications on non-802.1X events.

Example

An internal network user is created in ISE and used to test the Guest portal which will trigger an event.

  1. Run the identity_group_subscribe script:

/identity_group_subscribe.sh -a 10.0.0.37 -u mac -k alpha.jks -p cisco123 -t alpha_root.jks -q cisco123

Results: Refer to the right hand panel.

identity_group_subscribe

------- properties -------

version=1.0.2-30-SNAPSHOT

hostnames=10.0.0.37

username=mac

group=Session

description=null

keystoreFilename=alpha.jks

keystorePassword=cisco123

truststoreFilename=alpha_root.jks

truststorePassword=cisco123

--------------------------

11:20:22.839 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Started

Connecting...

Connected

11:20:24.468 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Connected

Press <enter> to disconnect...
  1. Select Administration > pxGrid Services to view the subscribed identity group session.

View the subscribed identity group session

  1. Create an ISE identity user to be used for Guest Portal to trigger an employee.

Create an ISE identity user for Guest Portal

  1. Use the default self service portal test to verify the user and associated identity group(s) in real-time.
    2. Select Guest Access > Configure > Guest Portals > Portal test URL

Verity the user and associated identity group

  1. Click Portal test and enter the identity group user value entered.
  1. Click Sign On.
  1. You should the identity user and group notifications appear.

./identity_group_subscribe.sh -a 10.0.0.37 -u mac -k alpha.jks -p cisco123 -t alpha_root.jks -q cisco123

Results: Refer to the results in the right hand panel.

identity_group_subscribe

------- properties -------

version=1.0.2-30-SNAPSHOT

hostnames=10.0.0.37

username=mac

group=Session

description=null

keystoreFilename=alpha.jks

keystorePassword=cisco123

truststoreFilename=alpha_root.jks

truststorePassword=cisco123

--------------------------

11:20:22.839 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Started

Connecting...

Connected

11:20:24.468 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Connected

Press <enter> to disconnect...user=jsmith

group=Employee