Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

Labels

Forum Posts

Hi All, we have a financial customer who is looking at deploying ISE for 60K concurrent endpoints with 2 x Admin, 2 x MnT and 8 x PSNs. They would like to get some guidance on sizing for additional storage for retaining the logs for up to 7 years. I ...

lekang by Cisco Employee
  • 1379 Views
  • 4 replies
  • 0 Helpful votes

Hello,We are currently running ISE 1.4 Patch 5 (soon to go to 2.0) along with the Cisco WLC 5508 7.4.140.0.  We have a mandate to turn off our wireless during non business hours.  Currently, I have a script that runs to shut/no shut the switchport wh...

__Beth__ by Level 1
  • 955 Views
  • 3 replies
  • 0 Helpful votes

Hey Folks,When PSN receives an accouting-stop from NAD (WLC in this case) it will deactive session and free up the license. Is this information shared in the deployment in newer ISE versions (1.4 2.0 etc.)? See a scenario lets say doing MAB only, and...

Scott Irey by Cisco Employee
  • 1074 Views
  • 2 replies
  • 0 Helpful votes

I am trying to configure TACACS for WLC and am following this youtube video from TAC but when I get to the step where I pick device type WLC all I see is “All device types”Any guidance appreciated.

paulle by Cisco Employee
  • 2812 Views
  • 4 replies
  • 2 Helpful votes

I am doing a greenfield install of ISE 2.0 for a client.  Using EAP-TLS for machine and user auth, but the client wants posture assessment as well.  I can get the laptop to install the NAC agent.  I only have the NAC agent installing on the unknown d...

deyster94 by Level 5
  • 408 Views
  • 2 replies
  • 0 Helpful votes

Hello everyone,I cannot find if it's possible to send notifications from ISE after several unsuccessful attempts to login to the network device. My Customer wants to receive email (or at least syslog) notifications after several TACACS authentication...

anvolkov by Cisco Employee
  • 2245 Views
  • 2 replies
  • 0 Helpful votes

Hi, We are using ACS 5.7 in our environment, I need to add a router for authentication and authorization in this ACS. when I added the device, its getting authenticated and going to "User Exec" mode. not to "PRIVILIGED" mode. please let me know how...

rkandasa1 by Level 1
  • 1526 Views
  • 15 replies
  • 0 Helpful votes

Hello Experts,
I am working on an issue where we want to run the below REST API to monitor the active sessions.We followed the documentation and created the 2 users under Administration > System > Admin Access > Administrators > Admin Users  "ersadm...

musultan by Cisco Employee
  • 1767 Views
  • 2 replies
  • 1 Helpful votes

Hi All,   I am working on ISE. I have 2 authorization profiles. 1st profile is a default profile which will be pushed after the client is 802.1x authenticated.   With the help of probes, ISE discovers the client to be a windows-7 client, now after it...

rbalaram by Cisco Employee
  • 2959 Views
  • 6 replies
  • 1 Helpful votes

I am having problems installing the ACS 5.3.0.40.9 cumulative patch.  We were able to install the patch on our secondary instance with no problem at all, however we cannot install it on our Primary instance.  I am installing by using the command ...a...

dlstokes by Level 1
  • 2323 Views
  • 6 replies
  • 0 Helpful votes

I have Red, Green and Blue icons in my Egress Matrix.  I see that Red appears to be for Deny All.  In the Green ones,  I have permit/deny acl statements and likewise for the Blue ones.  What is the difference of the Green & Blue colors in the matrix?

scamarda by Cisco Employee
  • 740 Views
  • 1 replies
  • 0 Helpful votes