https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523215#M519651 <HTML><HEAD></HEAD><BODY><P>I have to say these bugs are getting a bit rediculous now. </P></BODY></HTML> Tue, 21 Nov 2017 11:50:51 GMT Arne Bier 2017-11-21T11:50:51Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523213#M519642 <HTML><HEAD></HEAD><BODY><P>Running ISE 2.3 patch 1 and I noticed today that when I change the Authentication Policy Default to "Deny Access" then the entire Authentication Policy gets wiped out, and there is no way to rebuild it. </P><P></P><P>Only way is to delete the entire Policy Set and start again.&nbsp; Is it no longer allowed to make the default Auth Policy DenyAccess?</P></BODY></HTML> Tue, 21 Nov 2017 03:38:30 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523213#M519642 Arne Bier 2017-11-21T03:38:30Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523214#M519647 <HTML><HEAD></HEAD><BODY><P>You are hitting <A href="https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvg44615/">CSCvg44615</A> looks like.</P><P></P><P>~Hari</P></BODY></HTML> Tue, 21 Nov 2017 09:11:17 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523214#M519647 hariholla 2017-11-21T09:11:17Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523215#M519651 <HTML><HEAD></HEAD><BODY><P>I have to say these bugs are getting a bit rediculous now. </P></BODY></HTML> Tue, 21 Nov 2017 11:50:51 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523215#M519651 Arne Bier 2017-11-21T11:50:51Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523216#M519658 <HTML><HEAD></HEAD><BODY><P>There is a hot patch for this. Please ask TAC to request for it.</P></BODY></HTML> Tue, 21 Nov 2017 16:48:17 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523216#M519658 hslai 2017-11-21T16:48:17Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523217#M519665 <HTML><HEAD></HEAD><BODY><P>I opened a TAC case today and the TAC jumped right onto it.&nbsp; But after some research it turns out this is not a trivial patch that can be applied.&nbsp; TAC informed me that it would take a few days to get it from BU.</P><P></P><P>At that point I decided to rather wait for the official patch because it sounded like it could turn into a mission and I don't want complications when the official patch is applied.</P></BODY></HTML> Wed, 22 Nov 2017 04:33:51 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523217#M519665 Arne Bier 2017-11-22T04:33:51Z https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523218#M519673 <HTML><HEAD></HEAD><BODY><P>If your ISE 2.3 has no other hot patches applied yet, the existing hot patch should work. If you share the case number, I can take a look and check for the particular.</P></BODY></HTML> Wed, 22 Nov 2017 05:50:56 GMT https://community.cisco.com/t5/network-access-control/ise-2-3-setting-default-authentication-policy-to-denyaccess-will/m-p/3523218#M519673 hslai 2017-11-22T05:50:56Z