Network Access Control

Integrate Cisco ISE 2.1 with Bluecoat ProxySG for guest access

Hi everyone, I would like to integrate Cisco ISE 2.1 with Bluecoat ProxySG by using Microsoft WPAD to assign Proxy via DHCP to guest. The following is network diagram for this problem. Guest -> AP -> WLC -> Cisco ISE -> Bluecoat ProxySG I configur...

Resolved! ISE + Citrix XenDesktop Integration

Hi Guys, Not sure if I am going crazy but I’m pretty sure I’ve seen a ISE + Citrix integration whitepaper for .ica connections from thin clients. I’ve looked everywhere and Arpan gave me a hand an could not find. I know we integrate with XenMobile MD...

WSA Integration Issue

I'm having some issues with WSA integration.I've enabled pxGrid on ISE have the cert signed with both client and server auth. The root cert is uploaded to the WSA. I signed the WSA client cert with the pxGrid template.When I do a test I get the foll...

6880 ISE ISSUE 15.2 SY3

HI ALL, I am facing an issue with 6800 X-LE with version 15.2 SY3 We deployed 6800 X-LE two months ago and everything works fine and last week when we added more users we start facing issues mentioned below: 1: User got authenticated and ip address ...

Resolved! Cisco ISE 2.1 - Where configure CoA shared secret?

Hello! I have a test installation of Cisco ISE 2.1 (Patch 2). I have configured a switch with aaa dynamic author, IP of ISE and a shared secret for correct CoA operation. When doing a CoA operation, the switch does complain about a wrong secret. I ...

Resolved! ISE Multi-session User Login, NAC Web Agent and 2FA Query

There are couple of questions that I need confirmation forSame user logged in from multiple locations at the same time, wired/wireless (dot1x) or via VPN. I know there isn’t anything inbuilt in ISE (?) to alert on user logged in from more than 1 loca...

Preserving local database on ASA Firewall

Does anyone know how to preserver the local database that contains the user credentials. Migrating from off an old ASA to a new platform.

ISE 2.1.0.474 - 302 Redirect Loop on Admin Web GUI

Hi We've recently installed an ISE VMWare Virtual Machine instance using 2.1.0.474. Installation was successful, Virtual Machine Resource Check passed and the only settings that have been modified are those that are prompted for during initial setup...

Resolved! ACS 5.5 Backup / Restore

Hi, I newly installed acs v5.3 and i would like to configure the Backup process to maintain my configuration. I mainly found three ways to configure a scheduled backup: 1) using cli 2) using System Administrator/ Operations / Scheduled Backup (consid...

ISE - Certificate Authentication Profile - How this works?

Hi All,In ISE, the Certificate Authentication Profile (CAP) tells what field from the certificate to be used as username. I got this. But after getting the username from the cert, how does ISE authenticate the user? How do I specify, which identity s...

Resolved! AnyConnect Posture - "client incompatible with old policy server version"

I have a Windows box with the Anyconnect 4.3 posture module installed. It is spitting out an error saying "client incompatible with old policy server version" when it tries to posture itself (ISE 1.4, latest compliance modules). Can anyone give me a ...

Download ISE VApp

Hello, Can someon download the ISE.ova for lab? I need to check all feature in order to decide wether buy. Thanks in advance!

Unable to differentiate between iPad & other apple devices

Dears, I have a condition where i have to match a corporate AD group who will access internet on corporate provided IPAD only ( not even their iphone), how i can differentiate between ipad and iphone with a specific AD group access. thanks

Troubleshooting ISE 2.1 Threat-Centric NAC (TC-NAC) with Qualys

Hi,I have integrated end setup SE 2.1 Threat-Centric NAC (TC-NAC) with Qualys, but scan request from ISE does not work.In debug logs I can see: no adapter instance available.vaservice.log:2017-01-18 08:13:51,914 DEBUG [SimpleAsyncTaskExecutor-1][] c...

Resolved! ISE 2.1 RTC with FP6.1 - No Unquarantine Action

Testing RTC with FP6.1 and ISE 2.1. I can successfully quarantine a host using FP6.1 Correlation. I see the entry in the ISE livelog and the CoA / Policy Change to the local switch. When I try to unquarantine the device through the FP Correlation ...

Network Access Control

Forum Posts

Integrate Cisco ISE 2.1 with Bluecoat ProxySG for guest access

Resolved! ISE + Citrix XenDesktop Integration

WSA Integration Issue

6880 ISE ISSUE 15.2 SY3

Resolved! Cisco ISE 2.1 - Where configure CoA shared secret?

Resolved! ISE Multi-session User Login, NAC Web Agent and 2FA Query

Preserving local database on ASA Firewall

ISE 2.1.0.474 - 302 Redirect Loop on Admin Web GUI

Resolved! ACS 5.5 Backup / Restore

ISE - Certificate Authentication Profile - How this works?

Resolved! AnyConnect Posture - "client incompatible with old policy server version"

Download ISE VApp

Unable to differentiate between iPad & other apple devices

Troubleshooting ISE 2.1 Threat-Centric NAC (TC-NAC) with Qualys

Resolved! ISE 2.1 RTC with FP6.1 - No Unquarantine Action

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Renewing or Deleting ISE Data Connect Trusted Certificate

ISE node not patching

ISE RADIUS persistence on Citrix Netscaler query

Linux - Posture and SSH

FMC API to update SNORT

ISE backup and restore

Understanding Break Times During Automatic Failover in a Small-Scale Redundant (HA) Configuration of...

Upgrade from 3.0 P8 to 3.3 P3

Cisco ISE license (individual) required if both nodes in ISE cluster

Assistance Needed for Cisco ISE 3.2 Lab Authentication with Stealthwat