Activate the pxGrid Cloud Identity Source

This task explains how to activate the pxGrid cloud identity source in the Cisco Security Cloud Control.

Before you begin

Complete the tasks discussed in Activate the App Instance.

Note	Only one pxGrid cloud identity source can be active at a time.

Procedure

Step 1	Log in to Cisco Security Cloud Control as a user with the Super Admin role.
Step 2	Click Policies > Threat Defense > Integration > Other Integrations > Identity Sources
Step 3	Click Identity Services Engine (pxGrid Cloud).
Step 4	Click Save at the top of the page.
Step 5	If a green check mark is not displayed next to the name of the identity source, select it. Example:
Step 6	Click Make Active. Example:
Step 7	(Optional.) Select the following options if desired: Session Directory Topic: Select the check box to receive ISE user session information from the Cisco ISE server. SXP Topic: Select the check box to receive updates to SGT-to-IP mappings when available from the ISE server. This option is required to use destination SGT tagging in access control rules. ISE Network Filter: Optional filter you can set to restrict the data that Cisco ISE reports. If you provide a network filter, Cisco ISE reports data from the networks in that filter. You have the following options: Leave the field blank to specify `any`. Enter a single IPv4 address block using CIDR notation. Enter a list of IPv4 address blocks using CIDR notation, separated by commas.
Step 8	Under Activated ISE, expand the identity source. Example normal result: Example error result: In the event of an error, see Test the pxGrid Cloud Identity Source.
Step 9	Verify the status is Active and that all scopes and topics are displayed.
Step 10	Wait a few minutes for data to be downloaded.

What to do next

See Test the pxGrid Cloud Identity Source.