Identity Group Subscribe

Verification

This test verifies the ability of the third party system to subscribe to the ISE published Identity topics and receive notifications.

Definition

Subscribing to the Identity Group topic allows pxGrid client to receive notifications on non-802.1X events.

Example

An internal network user is created in ISE and used to test the Guest portal, which will trigger an event

  1. Run the identity_group_subscribe script.

Run identity_group_subscribe script 

/identity_group_subscribe.sh -a 10.0.0.37 -u mac -k alpha.jks -p cisco123 -t alpha_root.jks -q cisco123

Results 

------- properties -------

version=1.0.2-30-SNAPSHOT

hostnames=10.0.0.37

username=mac

group=Session

description=null

keystoreFilename=alpha.jks

keystorePassword=cisco123

truststoreFilename=alpha_root.jks

truststorePassword=cisco123

--------------------------

11:20:22.839 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Started

Connecting...

Connected

11:20:24.468 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Connected

Press <enter> to disconnect...
  1. Select Administration>pxGrid Services to view the subscribed Identity group session.

Select Administration and pxGrid Services

  1. Create an ISE identity user to be used for Guest Portal to trigger an employee.

Select Administration and pxGrid Services

  1. Use the default self service portal test to verify the user and associated identity group(s) in real-time.

Select Guest Access > Configure > Guest Portals > Portal to test URLs.

Select Administration and pxGrid Services

  1. Click Portal. Test and enter the identity group user value entered.

Select Administration and pxGrid Services

  1. Click Sign On.

Identity user and group notifications display. Note user=jsmith and group=Employee at the end of the results.

Identity user and group notifications display 

./identity_group_subscribe.sh -a 10.0.0.37 -u mac -k alpha.jks -p cisco123 -t alpha_root.jks -q cisco123

Results 

------- properties -------

version=1.0.2-30-SNAPSHOT

hostnames=10.0.0.37

username=mac

group=Session

description=null

keystoreFilename=alpha.jks

keystorePassword=cisco123

truststoreFilename=alpha_root.jks

truststorePassword=cisco123

--------------------------

11:20:22.839 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Started

Connecting...

Connected

11:20:24.468 [Thread-1] INFO com.cisco.pxgrid.ReconnectionManager - Connected

Press <enter> to disconnect...user=jsmith

group=Employee