I came across that one already myself, but it doens't apply because i'm running 2.7

Affected releases are 2.1 and 2.2

 Tx, for giving feedback on your current ISE version being used , the bug report however is strikingly similar to what you are experiencing such as the 90 minute sequence  period for the alarms being generated.. Do you also have 'unusable domains' as mentioned in the bug report (which apparently can trigger this problem) ?

 M.

What do you exactly mean with the 'bug report'? If you are referring to the detailed report of the error message, the answer is very short, there are not details available, it's just the error message.

So there is no real indication of something about 'unusable domains'.

Hi @Darkmatter ,

I think @marce1000  was talking about the Description, specifically the symptom of the bug. I checked the internal details on this bug. There are two possibilities:

(1) There is actually a DNS reachability issue at every 90 minutes interval.

(2) There is a regression of this bug in 2.7. 

To check (1), you just need to take captures on ISE with the filter of the DNS server.

To check (2), check if you have any 'Unusable domains'. Refer to the image below:

I just updated to 2.6 patch 6 and have the same issue now. But not every 90 minutes, every 75 minutes (just like you do)

No unusuable domain, no dns reachability issue because they are the same as before

I have to correct that i face this error also every 75 minutes and not 90 minutes like mentioned before.

I took a packet capture on one of the ISE nodes and the only abnormal i could see it this around the time that ISE reported the ALARM.

Installed patch 1 for version 2.7 - ise-patchbundle-2.7.0.356-Patch1-20033115.SPA.x86_64.tar.gz - in hopes this would be a bug and be solved by now but no luck either on that one.

FYI: ip addresses - .13/.14 are domain controllers and .49 is an ISE node - they are all in the same subnet