https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4042786#M558677 AKAIK there is not a direct report you can run to target that. However, you could run a report on Top N Authentication by Failure Reason, and create a rule like this: Failure reason contains TLS. This would report how many endpoints are failing auth due to TLS issues. Do you use the ise posture module? If so, you could setup a registry check to determine what your hosts are configured to use from a Windows perspective: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\RasMan\PPP\EAP\13. That key is specifically applicable to EAP TLS and PEAP. There may be some other keys you could leverage as well. Good luck &amp; HTH! Mon, 09 Mar 2020 13:51:27 GMT Mike.Cifelli 2020-03-09T13:51:27Z https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4042646#M558669 <P>Hello Experts,<BR />I would like to extract reports based on the TLS version being used by the endpoints, as seen here:<BR /><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Cisco ISE - TLS version.png" style="width: 999px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/68758i0BBCCB77CFCE34D7/image-size/large?v=v2&amp;px=999" role="button" title="Cisco ISE - TLS version.png" alt="Cisco ISE - TLS version.png" /></span><BR />But, was not able to locate such a filter on ISE Reporting, any pointers to the same?<BR />Or is this something that cannot be extracted from ISE?</P> Mon, 09 Mar 2020 09:16:14 GMT https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4042646#M558669 dgaikwad 2020-03-09T09:16:14Z https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4042786#M558677 AKAIK there is not a direct report you can run to target that. However, you could run a report on Top N Authentication by Failure Reason, and create a rule like this: Failure reason contains TLS. This would report how many endpoints are failing auth due to TLS issues. Do you use the ise posture module? If so, you could setup a registry check to determine what your hosts are configured to use from a Windows perspective: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\RasMan\PPP\EAP\13. That key is specifically applicable to EAP TLS and PEAP. There may be some other keys you could leverage as well. Good luck &amp; HTH! Mon, 09 Mar 2020 13:51:27 GMT https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4042786#M558677 Mike.Cifelli 2020-03-09T13:51:27Z https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4044717#M558827 <P><FONT face="verdana,geneva" size="2">Yes, I did try out this way of finding out the endpoints, but this method does not provide an option to extact the report in csv format.</FONT><BR /><FONT face="verdana,geneva" size="2">The report generated in graphical format only...</FONT><BR /><BR /><FONT face="verdana,geneva" size="2">Any workaround to get that report extracted in csv format?</FONT></P> Thu, 12 Mar 2020 06:11:26 GMT https://community.cisco.com/t5/network-access-control/report-based-on-tls-version-used-by-endpoints/m-p/4044717#M558827 dgaikwad 2020-03-12T06:11:26Z