https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811163#M581039 <P>Hi All,</P><P>We are currently using Cisco ISE 2.7 version patch 8 and planning to upgrade to version 3.1 Please let me know whether any known issues reported in patch 4 ? A<SPAN><SPAN class="">re there any reported issues during the upgrade such as configuration sync etc..</SPAN></SPAN></P> Mon, 10 Apr 2023 12:36:06 GMT Gouthami Nair 2023-04-10T12:36:06Z https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811163#M581039 <P>Hi All,</P><P>We are currently using Cisco ISE 2.7 version patch 8 and planning to upgrade to version 3.1 Please let me know whether any known issues reported in patch 4 ? A<SPAN><SPAN class="">re there any reported issues during the upgrade such as configuration sync etc..</SPAN></SPAN></P> Mon, 10 Apr 2023 12:36:06 GMT https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811163#M581039 Gouthami Nair 2023-04-10T12:36:06Z https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811188#M581043 <P class="lia-align-justify">Hi&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/1490219">@Gouthami Nair</a>&nbsp;,</P> <P class="lia-align-justify">&nbsp;I didn't have issues from <STRONG>2.7 P8</STRONG> (<EM>Nov 21th</EM>) to <STRONG>3.1 P4</STRONG> (<EM>Sep 22nd</EM>).</P> <P class="lia-align-justify">Note: attention to the following</P> <UL class="lia-list-style-type-disc"> <LI><A href="https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd45843" target="_blank" rel="noopener">CSCwd45843 Auth Step latency for policy evaluation due to Garbage Collection activity</A>., solved in <STRONG>3.1 P5</STRONG>.</LI> <LI><A href="https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwc74531" target="_blank" rel="noopener">CSCwc74531 ise hourly cron should cleanup the cached buffers instead of the 95% memory usage</A>, solved in <STRONG>3.1 P5</STRONG></LI> </UL> <P class="lia-align-justify">Hope this helps !!!</P> Mon, 10 Apr 2023 13:30:26 GMT https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811188#M581043 Marcelo Morais 2023-04-10T13:30:26Z https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811490#M581051 <P>My own personal experience with 3.1p5 was that Cisco Phones whose EAP-TLS certificate was signed by Call Manager (CAPF cert) would fail - ISE was complaining about failed SSL decoding. We had to revert back to patch4 and then the phones started working again.&nbsp;</P> <P>We have not tried patch 6&nbsp;</P> Mon, 10 Apr 2023 23:25:53 GMT https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811490#M581051 Arne Bier 2023-04-10T23:25:53Z https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811500#M581053 <P>I would recommend two things for you.</P> <OL> <LI>Install 2.7 patch 9 prior to upgrading, this will limit the amount of change you experience going to 3.1 since many of the fixes in 2.7p9 are also built in to the 3.1 patches.&nbsp;</LI> <LI>Target 3.1 patch 6 as your post upgrade release. Patch 6 includes an additional 87 publicly acknowledged bug fixes and a few that are quite severe in p5 hit. It also provides for the workaround with TPM stored certs on windows machines.&nbsp;</LI> </OL> Mon, 10 Apr 2023 23:39:16 GMT https://community.cisco.com/t5/network-access-control/ise-2-7-upgrade-to-version-3-patch-4/m-p/4811500#M581053 Damien Miller 2023-04-10T23:39:16Z