Network Access Control

Mixed Cisco environment and freeradius

I have several 3560's running 12.2 and a nexus 3064 running 6.0. I have freeradius v2 runing on centos 6. My problem is getting enable authentication to work for the 3560 switches. I can get enable to work only if I enter the enable password defined ...

ISE 2.1 NFS Share

Has anyone been able to successfully mount an nfs share on a physical ISE 2.1 server. I have a pair of ISE 2.0 and a pair of ISE 2.1 servers. I can mount any file destination on the older 2.0 however the 2.1 servers fail. When we do captures on the l...

Resolved! ISE and WLC dynamic interface group assignment ?

I have a somewhat large deployment coming up with several WLC dynamic interfaces assigned to an interface group, replicated across for multiple sites. I understand that ISE can return the VLAN ID to the WLC to place the client in, but if I'm using i...

Resolved! Hiding the Accept/Deny AUP buttons

I am creating a hotspot page for the my default wired condition that will simply say something "If you are seeing this page, call the Help Desk.". I want to put that in the AUP text so the MAC address of the device is not automatically moved to some...

Guest related queries

Hi Team, We are in a PoV of Cisco ISE with v2.1 and need to know if we can address the requirements as below: Can the guest user use email id or mobile number as his username. Currently Cisco ISE is generating the username automatically by combi...

Resolved! Aruba manual URL redirect

Aruba manual URL redirect. I understand that for any kind of URL redirection with Aruba WLC, static URL is used and configured in Aruba Captive portal. Dynamic URL is not supported in Aruba and ISE Integration. This URL is generated by ISE after crea...

ISE 2.1 - Compliance Module 4.x - Posture USB Condition

Hi, When run posture with USB condition, feature is function and blocked USB Mass Storage device and prompt out error message. But when trying to access Drive Mapping, it allowed access to the Map Drive, but it will prompt for error message "IT poli...

Dot1x session - Port Unauth state (C2960)

Hi All, I facing an issue during endpoint is trying to run posture, the endpoint is in posture unknown state. For HQ site, posture is running well without any issue. For Branch A switch, all configuration exactly the same with HQ switch. (Supplicant...

Resolved! ISE 2.1 Cisco IP Phone dot1.x Authentication

Hey Guys, hope I can get some help here. I have a situation where I have some Cisco IP Phones same model but different hardware revisions, (7841 v01 and v04) We had ISE 1.2 in place and everything worked great. Phone would authenticate no problem....

Resolved! User Access Elevation for a Set of Devices

Hi Experts,Customer is planning to automate access elevation, so he wants to know if ACS supports elevating access to a user for a set of network devices (say 2 or 3 devices ). Currently when they elevate access based on AD, it elevates to all the ne...

Resolved! ISE with Dell Zero Client Solution

Experts,My Customer is looking to deploy ISE within a greenfield environment where DELL zero clients are proposed to them. Do we have any specific guide for this type of deployment that I can share? Our client is against deploying thin clients or tra...

Resolved! How easy is it to add additional interfaces to ISE 2.2 once up and operational?

What is the exact procedure i.e. does the ise process need to be stopped first? Thanks

ISE Secondary Node unable to join Primary Node

Hi, We had a working ISE 2.1 Patch 3 deployment of two nodes. The secondary node was showing some issues so we dropped and rebuilt the VM. The new secondary runs the same software version and patch level. Forward / Reverse DNS entries for both nodes...

Resolved! ISE v2.1 patch 3 issues

Ever since we updated to patch 3, we have seen a lot of dead radius server messages, especially when users are accessing the network via wireless controllers. We have a guest portal tied to AD, and the wireless access is practically unusable, due to...

ISE Guest and contractor dynamic vlan assignment

We are using ISE for wireless corporate and guest access for some time with no problems. Now we are planning to expand access control to wired LAN. We plan to use web authentication with dynamic vlan assignment to both visitors and contractors. In ou...

Network Access Control

Forum Posts

Mixed Cisco environment and freeradius

ISE 2.1 NFS Share

Resolved! ISE and WLC dynamic interface group assignment ?

Resolved! Hiding the Accept/Deny AUP buttons

Guest related queries

Resolved! Aruba manual URL redirect

ISE 2.1 - Compliance Module 4.x - Posture USB Condition

Dot1x session - Port Unauth state (C2960)

Resolved! ISE 2.1 Cisco IP Phone dot1.x Authentication

Resolved! User Access Elevation for a Set of Devices

Resolved! ISE with Dell Zero Client Solution

Resolved! How easy is it to add additional interfaces to ISE 2.2 once up and operational?

ISE Secondary Node unable to join Primary Node

Resolved! ISE v2.1 patch 3 issues

ISE Guest and contractor dynamic vlan assignment

ISE 3.2 using Intune as external MDM

ISE Tacacs unknow device error with fortigate

Guest Portal authentication behaviour

Posture Script Condition–Fails to Connect When SHA-256 Fingerprint Add

Is it possible to use "PostureOS" attribute in ISE Profiling Policy

custom FQDNs for Guest/Sponsor Portal

ISE reimage using CISM

Cisco ISE in Entra ID

Windows Defaulting to EAP-TLS Instead of PEAP for Non-Corporate SSID

enabling MFA for identity users