https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813980#M581143 <P>Why do you wish to do this?&nbsp; ISE is a hardened appliance based on Linux but its shell is not a normal Linux shell.</P> Thu, 13 Apr 2023 17:48:36 GMT ahollifield 2023-04-13T17:48:36Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813906#M581136 <P>Hi everyone,</P><P>I just upgraded our ISE from 3.1 to 3.2. Before the upgrade, I'm able to scan get a credential scan using a domain user account on ISE with ACAS. However, after the upgrade, I'm no longer able to get a credential scan using the same domain user account. I already have a ticket open with TAC, but I'm just checking if anyone here have had the same issue and was able to resolve it.</P><P>Thanks in advanced.</P> Thu, 13 Apr 2023 16:05:53 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813906#M581136 Lyn17 2023-04-13T16:05:53Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813926#M581139 <P>&nbsp;</P> <P>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;- Check ISE <STRONG>logs</STRONG> related to the credential scan process <STRONG><U>(e.g.</U>) ,&nbsp;</STRONG></P> <P>&nbsp;M.</P> Thu, 13 Apr 2023 16:42:30 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813926#M581139 Mark Elsen 2023-04-13T16:42:30Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813980#M581143 <P>Why do you wish to do this?&nbsp; ISE is a hardened appliance based on Linux but its shell is not a normal Linux shell.</P> Thu, 13 Apr 2023 17:48:36 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4813980#M581143 ahollifield 2023-04-13T17:48:36Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814007#M581146 <P>We need it for DoD compliance. Our cyber and validator need to have the nessus scan files for the ISE servers.</P> Thu, 13 Apr 2023 18:48:48 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814007#M581146 Lyn17 2023-04-13T18:48:48Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814658#M581165 <P>What are they looking to find?</P> Fri, 14 Apr 2023 17:56:55 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814658#M581165 ahollifield 2023-04-14T17:56:55Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814987#M581174 <P>Likely&nbsp;CSCwd51409, which is resolved in ISE 3.2 Patch 1.</P> Sun, 16 Apr 2023 00:00:13 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4814987#M581174 hslai 2023-04-16T00:00:13Z https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4815902#M581187 <P>Vulnerabilities and/or bug such as CSCwd51409. There was a vulnerability (medium) on ISE that's the reason why I upgrade to 3.2 Patch 1 to resolve it. Unfortunately, after the upgrade, the CLI join domain was broken and I can no longer do a credential scan our 2 ISE nodes.</P> Mon, 17 Apr 2023 11:05:15 GMT https://community.cisco.com/t5/network-access-control/uncredential-scan-on-cisco-ise-nessus-scanner/m-p/4815902#M581187 Lyn17 2023-04-17T11:05:15Z