https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770118#M486682 <P>ISE 2.2 is a long term support release, as 2.4 will also be.&nbsp; The BU has&nbsp;recently added recommendations to the ISE software download page, 2.4 is now the "gold star" release when used with patch 5.&nbsp;&nbsp;Your customer should start planning an upgrade to 2.4, but they can stay on 2.2 for the foreseeable future (until EOS is announced at least) if they do not require any new features.&nbsp;&nbsp;</P> <P>&nbsp;</P> <P>2.2 patch 11 and 2.4 patch 4 were deferred, both releases had an AD bug regression that you either hit or didn't.&nbsp; 2.2 Patch 12 or 2.4 patch 5 are both considered stable and I would run either in production.&nbsp; The release notes for each release will cover the resolved bugs per patch level, the most recent&nbsp;patch including all previous patch fixes as well.&nbsp;</P> <P><BR />Resolved caveats<BR /><A href="https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-810214" target="_blank">https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-810214</A></P> <P>&nbsp;</P> <P>2.2 open caveats<BR /><A href="https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-747245" target="_blank">https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-747245</A></P> <P>&nbsp;</P> <P>As with any ISE upgrade/patch, review the release notes, review the bug tracker, test in a QA environment if available.&nbsp; At least with ISE patching, if you encounter any show stopping bug, rolling back is relatively painless.&nbsp;&nbsp;<BR /><BR /></P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="ise-rec.JPG" style="width: 706px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/26796i233CC48C06CF7C58/image-dimensions/706x305?v=v2" width="706" height="305" role="button" title="ise-rec.JPG" alt="ise-rec.JPG" /></span></P> Fri, 28 Dec 2018 19:01:21 GMT Damien Miller 2018-12-28T19:01:21Z https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770089#M486677 <P>Hi</P> <P>&nbsp;</P> <P>we have a customer that has ISE 2.2 Patch 7 in production. What is the TAC recommended version right now (Dez 2019) ? ISE 2.2 patch X or already 2.4 ?</P> <P>&nbsp;</P> <P>If 2.2 with a certain patch level =&gt; did anybody face problems when upgrading ?</P> <P>&nbsp;</P> <P>Thanks</P> <P>&nbsp;</P> Fri, 28 Dec 2018 17:59:16 GMT https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770089#M486677 Is101008 2018-12-28T17:59:16Z https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770101#M486680 I suggest to move from 2.2 because it wasn't' a stable release. There are<BR />many patches released for it which is a good thing but further versions<BR />uses policy-sets instead of policies for authentication and authorization<BR />which might be a significant change for future. Hence I suggest to move<BR />asap.<BR /> Fri, 28 Dec 2018 18:17:13 GMT https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770101#M486680 Mohammed al Baqari 2018-12-28T18:17:13Z https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770118#M486682 <P>ISE 2.2 is a long term support release, as 2.4 will also be.&nbsp; The BU has&nbsp;recently added recommendations to the ISE software download page, 2.4 is now the "gold star" release when used with patch 5.&nbsp;&nbsp;Your customer should start planning an upgrade to 2.4, but they can stay on 2.2 for the foreseeable future (until EOS is announced at least) if they do not require any new features.&nbsp;&nbsp;</P> <P>&nbsp;</P> <P>2.2 patch 11 and 2.4 patch 4 were deferred, both releases had an AD bug regression that you either hit or didn't.&nbsp; 2.2 Patch 12 or 2.4 patch 5 are both considered stable and I would run either in production.&nbsp; The release notes for each release will cover the resolved bugs per patch level, the most recent&nbsp;patch including all previous patch fixes as well.&nbsp;</P> <P><BR />Resolved caveats<BR /><A href="https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-810214" target="_blank">https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-810214</A></P> <P>&nbsp;</P> <P>2.2 open caveats<BR /><A href="https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-747245" target="_blank">https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/release_notes/ise22_rn.html#pgfId-747245</A></P> <P>&nbsp;</P> <P>As with any ISE upgrade/patch, review the release notes, review the bug tracker, test in a QA environment if available.&nbsp; At least with ISE patching, if you encounter any show stopping bug, rolling back is relatively painless.&nbsp;&nbsp;<BR /><BR /></P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="ise-rec.JPG" style="width: 706px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/26796i233CC48C06CF7C58/image-dimensions/706x305?v=v2" width="706" height="305" role="button" title="ise-rec.JPG" alt="ise-rec.JPG" /></span></P> Fri, 28 Dec 2018 19:01:21 GMT https://community.cisco.com/t5/network-access-control/ise-2-2-recommended-version/m-p/3770118#M486682 Damien Miller 2018-12-28T19:01:21Z