Network Access Control

Hello Team,Are there any plans to allow support-bundle retrieval via API (and choose the node) ?I would like to analyze (and automate) support bundles digestion (via BDB) and have no SSH access, just GUI to PAN (and ERS API user).Thanks,Michal

Hello, I am tinkering around with a two year old SNS-3415 appliance at my workplace; as we prepare to replace it with its predecessor - The SNS-3515. However, when I logged into it, I could only execute BASH commands; no ios commands. I's it possible...

I have a customer asking if we still use Multicast for PSN. I have looked at different documents, and it looks so, but somehow I also have a vague memory of a change removing the need for Multicast, but I might be wrong.I cannot find anything about i...

hi,Our customer wants to protect against WannaCry using posture.Can we check the presence of specific Microsoft KBs using ISE posture with ISE 1.3?The predefined posture conditions (i.e. pr_Win7_64_Hotfixes) contain a number of combined KB checks, bu...

We are using Onelogin Idp(Identity Provider) for Single Sign On(SSO) support from our UI.I can see ISE primarily  supports PingFederate Idp for SSO along with other Idp Providers from the ISE 2.1 Release notes.www.cisco.com/c/en/us/td/docs/security/i...

Hi,I have a few questions regarding AnyConnect software maintenance in ISE wired/wireless deployment. Could you please help me with the following:What is the recommended way to keep AnyConnect (NAM and ISE Posture modules in my case) up to date on en...

In ISE 2.1 Patch 3 I've created an NMAP scan to include customer ports (tcp 8000, 4767 and 8194) and the NMAP Extensions dictionary is updated, but the attribute names do not appear in the profiling conditions pull-down, so i cannot create the condit...

interestingly maas360 was a mdm solution that was on the list for supported mdm servers in earlier releases of ISE 1.x.It doesnt appear to be on the current list for ise 2.2 or ise 2.1http://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/...

Is there a document that defines what is lost when a PSN is rebooted or lost?  I've read the HA part that describes the benefits of a Node Group so a client will not be stuck in an intermediate state when being redirected if a PSN fails.  Are there a...

Hi ISE Team,  As far as I understand to use multiple PSNs I need to place a load balancer in front  of the PSNs. I'd like to use a "central" load balancer with source NAT by adding  a new Radius AV pair with  the source IP ( or tell ISE to use an alr...

Background info: ISE 2.2Guest Access configures with self-registration portal.Question: Is there a way to get the page to ask the guest to set their own password right from the beginning, or at least for ISE to remember your password when it asks th...

Hi Experts,I know that when a sponsor user maps to multiple sponsor groups access rights get merged from all the matching groups.However, I'm running into an issue with Self-Registration approval.I have one Sponsor Group that has privileges to approv...

Hi,My customer is using IBM Federation Identity Manager for WebSSO, i believe there is currently no documented integration with ISE so does mean the integration is not possible or it's just a non-supported integration? If the later, how do we export ...