Network Access Control

Resolved! Cisco ISE - Authentication Strategy

Hello guys, Would like opinions to a scalable authentication strategy of users and / or workstations in Cisco ISE for the following scenario: Customer with approximately 130 branches. Each branch has a different AD domain, without trust relationship...

Resolved! ISE Latency & Licensing - 2nd Try

Hi Experts,My client has the following questions in regards to Latency and Licensing for their ISE 1.4 deployment. They currently already have ISE deployed for North America but now considering to roll it out to their sites in Europe and Asia.I Woul...

Resolved! ISE pre-auth access-list

Dears, I have created a pre-auth access-list for cisco ise 1.4, as per the Switch Configuration Required to Support Cisco ISE Functions 2.0, Cisco IP phone is being properly profiled and it Downloads proper access-list i.e permit ip any any , but whe...

Upgrade ACS server 5.6 to 5.7

Hello All, We have two ACS servers and Primary server is also a log collector. We are having Version : 5.6.0.22.3 on both primary and secondary servers. We planing to upgrade to version 5.7.0.15.1. My question is can I promote secondary to primary, d...

Resolved! ISE - REST API - Guest access

Dear Experts,Is it possible to retrieve data about self-registered users by using REST API? I mean guest access users who register themselves.Is there any good document available describing REST API for ISE?Best Regards,Adam Sniegorski

Resolved! ISE - server sizing

Hi All,I need you to size an installation of ISE to manage 50000 devices via TACACS+,in term of licenses I understand it's enough to quote 100 end points base license and 1 license for TACACS+in term of servers I don't know which is the methodology.....

ACS 5.2 fails to send files to sftp server after installing patch 5

HiAfter we have installed patch 5 on several ACS 5.2 server they aren't able anymore to write their backups to the sftp servers. I tried to search on the bug tool kit, but it seems to be broken when searching for the keyword "sftp". It's the same whe...

How is it possible to assign a static Client IP Address with TACACS in ACS 5.x

Hello,i have an ACS 5.6 in use. The used Authentication Protocols are RADIUS and TACACS. With RADIUS it is no Problem to assign a static ip address to an user with radius attributes that are stored in Authorization profiles.Is it possible to assign a...

Issue with Dynamic and Static Nat

I have the following configuration I have about 50 internal hosts that have static nats assigned with their respective services defined in the nat statement which I need to remove as I need to use dns-doctoring. This is the config: object network ...

Resolved! ISE Migrate guest users

hi,Our customer has a 1.2 deployment with Guest users and want to migrate the guest accounts to their new 1.4 deployment.I assume there is no automatic way to do this - with the exception of a backup/restore of the 1.2 config (which is not what we wa...

issue in ACS 5.6

Hi Guys I have issue in ACS 5.6 , pls see attachment thanks

ACS authenticate through an external ODBC

Hi, I'm using Cisco ACS 4.2 and i'm trying to authenticate via an external ODBC. I successfully created the ODBC and it connects to the external database then I configured the ACS to connect to the ODBC. Also I have selected this external ODBC in the...

Question about which ACS license to buy, upgrading from ACS-1121 w/ v5.1 to SNS-3415

Hi!My customer currently has a ACS 1121 Appliance With 5.1 SW And Base license. Since this is already EOL, he would like to purchase a replacement hardware appliance. What should I cater for him?Could I cater SNS-3415-K9 with the CSACS-3415-UP-K9 upg...

Resolved! IP:User-Agent - When ISE collect this data?

Hi,When does ISE collect IP:User-Agent data?-Dan

ISE 2.0 Web-Gui not working, can't access GUI

i have Cisco ISE 2.0-small in vmware workstation, i setup this ISE for first time and integrated AD, now after shutdown when i again started it, i can't open the web gui, i am new to ISE can you tell me how to troubleshoot this issue. at a.verma.av@g...

Network Access Control

Forum Posts

Resolved! Cisco ISE - Authentication Strategy

Resolved! ISE Latency & Licensing - 2nd Try

Resolved! ISE pre-auth access-list

Upgrade ACS server 5.6 to 5.7

Resolved! ISE - REST API - Guest access

Resolved! ISE - server sizing

ACS 5.2 fails to send files to sftp server after installing patch 5

How is it possible to assign a static Client IP Address with TACACS in ACS 5.x

Issue with Dynamic and Static Nat

Resolved! ISE Migrate guest users

issue in ACS 5.6

ACS authenticate through an external ODBC

Question about which ACS license to buy, upgrading from ACS-1121 w/ v5.1 to SNS-3415

Resolved! IP:User-Agent - When ISE collect this data?

ISE 2.0 Web-Gui not working, can't access GUI

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

Cisco ISE 3.1 WLC Captive Portal - AUP Error Apple Devices

.

"Change Password" functionality

Cisco ISE - ANC leveraging integrated AMP - Isolation

AnyConnect AAA with ISE and Okta (MFA).

15024 PAP is not allowed

Cisco ISE: Sponsor decide duration by Approval

ISE - Sponsor Approved Guest Access

ISE - Registered Guest Device Endpoint MAC Database

Is this possible: Static MAC Entry skipping 802.1x authentication