Network Access Control

ISE License Consumption

Hi All, Can someone help me in Cisco ISE license consumption. We have 500 base license and only 150 concurrent session but ISE is showing 450 used out off 500. How to configure ISE to show only concurrent session used license. Thanks Kamlesh

Resolved! Polling interval for PAN auto failover

Can anyone help me determine the configurable range for the polling interval for PAN auto failover? The ISE 2.1 Admin Guide includes the following steps:Step 6 Provide the Polling Interval time after which the Administration node status will be ...

TACACS+ Authenticates one account but no others.

I have a large network consisting of around 300 layer 2 switches and 5 ITNs. We have TACACS+ installed and have been using it for authentication for years. Just recently, our TACACS+ has begun getting the following error: "%SEC_LOGIN-4-LOGIN_FAILED: ...

Resolved! ISE distributed deployment and Licensing

Hi, I have 2 x ISE-VM-K9= licenses and i want to deploy ISE in an Standalone mode with HA. i.e have 2 boxes Node1 and Node2 each hosting all three personas and closely located in 1 data centre. then i want to have a third box node 3 in a remote data...

Resolved! Profile Mac vs iPhone etc?

Greetings, I am testing ISE2.0.1, but I'm having an issue that all devices profile as Apple-Devices. I put all the sub categories of Apple-Devices as their own category, and disabled Apple-Devices. This causes them to come on as unknown devices. It ...

Setting up Radius for APN authentication using ACS v5.5

Good Day All, I am fearly new with regards to ACS as a whole, so I am not too familiar with regards to setting up a radius I basically have little knowledge.. I have been tasked to set up a RADIUS to accomodate authentications for an APN. I just need...

Getting username from mac registered endpoint on WLC or ISE livelog

Hello, While setting up a standard wireless guest registration portal with device autoregistration on ISE2.0/2.1, we've realised that when we validate the initial guest redirection and subsequent source on WLC we see the username on the Monitor Clie...

Identity mappings in the Live Log

Hi Folks, I've enabled Identity mapping on ISE 2.0 and all of the mappings are showing up in my Radius Live Log. Is there anyway to stop that? I know can use the filter, but It's annoying having to enter a filter every time I want to look at the log....

ACS 4.2

We have an old ACS 4.2 that needs to have the cert upgraded for SHA2 and I do not see that as a choice in the dropdown menu. SHA1 is the last entry. It needs to be upgraded to match our production LDAP environment. I only have access to this box v...

Two different subnet IP to ACS 5.x

Hello All, Need to know whether we can give an ACS 5.x two different IP's (on two different NIC cards). One IP will only be used for Management and Device authentication, whereas other IP will be used for communication with the AD server. Thanks ...

AAA in cisco 2821

Hi, If I enable aaa new-model in line vty login local is not working . I need login local on vty and enable aaa new-model for cdr in voice gateway What is the solution Thanks

Resolved! Can Prime manage ISE?

As far as I understand the SNMP Agent on the Cisco ISE provides read-only SNMP v1 and SNMP v2c access to the following MIBs:· SNMPv2-MIB· RFC1213-MIB(MIB II)· IF-MIB· IP-MIB· IP-FORWARD-MIB· TCP-MIB· U...

Resolved! ISE error messages

Hi ,I am authenticating Fortinet with ISE . While ISE successfully authenticates fortinet ,the authentication reply is not reaching Fortinet firewall.The firewall can ping ISE.Following is the tcpdump messages. 210.18.5.70 is the fortinet firewall. ...

Resolved! Guest Self-Registration with Sponsor print

My customer is looking to provide guest access to self-register their own account. When the guest submit the request it goes to the the sponsor's email (person being visited) and the sponsor will then print out the guest credentials and hand it to th...

Resolved! ISE 2.1 Manage Accounts link provides 500 Internal Server Error

Looks like it's the following bug, related to ISE 2.0. Does anyone know if this is planned to be fixed?CSCuz65011

Network Access Control

Forum Posts

ISE License Consumption

Resolved! Polling interval for PAN auto failover

TACACS+ Authenticates one account but no others.

Resolved! ISE distributed deployment and Licensing

Resolved! Profile Mac vs iPhone etc?

Setting up Radius for APN authentication using ACS v5.5

Getting username from mac registered endpoint on WLC or ISE livelog

Identity mappings in the Live Log

ACS 4.2

Two different subnet IP to ACS 5.x

AAA in cisco 2821

Resolved! Can Prime manage ISE?

Resolved! ISE error messages

Resolved! Guest Self-Registration with Sponsor print

Resolved! ISE 2.1 Manage Accounts link provides 500 Internal Server Error

Sponsor Portal behavior after SSO

I have a question regarding the deployment of the ISE-PIC agent. Is it

Necesito configurar un portal de invitados "hibrido" en ISE 2.7

ISE Accept certificates without validating purpose will break 802.1AR

Cisco ISE JSON SMS

ISE certificates

ISE-PIC not receiving active sessions — only 5–6 users every few hours

CSCwq14246 - ISE internal disk check - ISE VM read/write issues

Cisco Catalyst 1300 and Dynamic VLAN

ciaco ISE 2.7 to 3.1 but it's using internal CA for authentication