This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
I was wondering if anyone has had any issues with ISE 2.4 patch 7 after upgrading from version 2.3 patch 6? I'm talking a direct upgrade and not a fresh install of 2.4 patch 7 from 2.3 patch 6. Since I've upgraded, I've noticed alarms for license registration, AD diag tools finding issue yet providing no details, TACACS+ authorized commands lagging on NADs (ie brief pauses between executing commands), the Web GUI lagging, randomly getting an error that a PSN couldn't be contacted on the Certificate page when trying to expand a PSN to check my system certs, etc. These are errors that I have never received on version 2.3. In fact, I originally installed patch 8 and had to roll back to patch 7 due to bug ID CSCvn12442 which still found it's way in patch 8 although, according to TAC, patch 8 was supposed to be the fix.
I'm at a crossroad now because we will be looking to migrate our ISE VMs to another host but I'm leaning towards going back to 2.3 patch 6. Unless someone can give me solid reason(s) for not downgrading, I may end up doing just that. Thoughts???
Solved! Go to Solution.
Yeah I'll have to go back and revisit the release notes to see if any of what I'm experiencing is listed in the open caveats. I've had to delay putting this into production for over a year due to hitting various bugs starting with 2.3. The patch to fix the bug ID I mentioned above wasn't released until March of this year. Now that I've upgraded, it appears that I'm getting worse performance than when I was on 2.3 with the March patch release. So I'm now debating if I should go back or stay on this release and see what Cisco does with the next patch.