Network Access Control

ISE 1.2 Authentication issue-Always to ACCESS_REJECT

Hello Everyone, I am doing new solution with ASA-SSL VPN login Authentication by ISE(external identify source is WIN2008 R2 AD) The topology is that please see the topology map, it is a sample. Device IP info: ASA inside IP 10.254.254.1 outside I...

EAP-TLS with different root CA

Hello,We have a customer who would like to deploy a different CA for EAP-TLS which is not part of the CA which signed the system certificates for ISE used for EAP. We will be importing this root CA in Trusted certificate store in ISE.Would EAP-TLS be...

Any issues running ACS 5.7 patch 3?

Is anyone running ACS 5.7 with patch 3 installed? If so, I would like to know the following: How long have you had the patch installed? Have you experienced any issues while using ACS 5.7 with patch 3 installed? I have a change scheduled to install...

Resolved! Radius server test options

Hello, Does anyone have a experience in testing radius server availability? I what way the switch can test radius server availability and what action it will take after detecting server is dead? Setup is done with ISE 1.4.

Resolved! ACS | WLC compatibility

We would like to know if ACS 5.7.0.15 is compatible to WLC 8.2.110.0

Resolved! SSID usage in ISE policy in sponsor portal

Hi,In the default sponsor portal view there is a SSID: option which can be filled for the configured SSID.Based on which a sponsor portal user select for this SSID fields allows the user to be connected to.In the ISE policy options I did not found a ...

ACS REST API - Create/Update User with Attributes

Hi, I'm currently attempting to create users into our Cisco ACS V5.6.0.22.4, using the REST API services. I can create/update delete a user entry fine, but I seem to be totally failing at setting attribute values that already pre-defined within the A...

Maximum length of User Custom Attributes

Does anybody know the Maximum length of string type user custom attribute?I cannot find any documents. But tried to find using ISE2.1 Eval OVA. In my testing, it was successful to set 128,000 chars, but it took about 10 minutes after clicking Save t...

Resolved! Library authentication - ILS (Aerohive)

Hi everyoneWe have a customer, about 10 libraries, that use Aerohive in concert with and Integrated Library System (ILS) to perform authentication off wlan, and provide granular access based on the type of user. Sounds like an ISE use case, but I won...

Resolved! Assign SGT to multiple users on single VM

Hi there,Appreciate your guidance on the following:Customer has a use case where 2 users may log into one VM at the same time - so concurrently logged in - and have asked whether it is possible to assign an SGT to each user.If a single user was logge...

DACL logging in ISE

I was told you can not use the "log" option on a DACL so I'm wondering how you fine-tune your DACLs? I don't want to put a deny ip any any and have no way of knowing what ports are being blocked.

Resolved! ISE Node RTT

Is there any change for the maximum RTT between ISE nodes for v2.1?

Tunneled EAP / Native EAP 802.1x

When using tunneled eap, is the outer tunnel solely there to create an extra layer of security for the user/pc credentials that are sent in the inner tunnel via another eap method?

Resolved! ACS identity Store creation

Hi Experts, I have an ACS 5.8 in out network. I am planning to create an identity store sequence for authentication for devices. If I have 10 internal users in ACS, is there any way I can select 5 users from internal user list and make then part of i...

Cisco ISE | how to enroll switch in cisco ISE

We would like to know if we can enroll the switch (Model 3850 Version 03.07.03E) to our Cisco ISE

Network Access Control

Forum Posts

ISE 1.2 Authentication issue-Always to ACCESS_REJECT

EAP-TLS with different root CA

Any issues running ACS 5.7 patch 3?

Resolved! Radius server test options

Resolved! ACS | WLC compatibility

Resolved! SSID usage in ISE policy in sponsor portal

ACS REST API - Create/Update User with Attributes

Maximum length of User Custom Attributes

Resolved! Library authentication - ILS (Aerohive)

Resolved! Assign SGT to multiple users on single VM

DACL logging in ISE

Resolved! ISE Node RTT

Tunneled EAP / Native EAP 802.1x

Resolved! ACS identity Store creation

Cisco ISE | how to enroll switch in cisco ISE

ISE - EAP TLS Machine / User Auth Problem

pxgrid invoke getEndpointByMacAddress api return 204

pxGrid Certificate-Based Authentication - 503 Service Unavailable

ISE Posture – Long boot and no network access

External MDM heartbeat interval and Azure Public IP idle timeout

iPSK Manager VM requrirements

IBNS 2.0 Err-Disable port if auth fails

Can PSNs in a deployment use different EAP Auth cert/CA chains?

ISE upgrade - small deployment - VM and SMS 3615 server

802.1x recommendations