Network Access Control

We have switch WS-C3750X-24P with IOS 15.0(2)SE8 , we found that applied DACL from AAA server not working properly. for example , denied telnet traffic is allowed. I tried the same on another switch (different model and IOS) and the DACL working prop...

We are installing a green field ISE 2.0 sp2 solution for wireless endpoints, one 802.1x corporate SSID and two guest portals. The WLC's are 5520's running code 8.1.131 Everything seems to be working as designed, until a windows user attempts to log i...

Hi guys, would like to seek help because some proxy enabled endpoints cannot connect to the byod portal but some can. are there any special config in ise or proxy server that needs to be added or modify for this to work smoothly? thanks

Hi,  We are setting up an API to import MAC addresses from SCCM to ISE, this is working well. But our issue is that what ever value we are entering for what group the MAC address should belongs to, it's registered into group "Registered devices". We...

I am unable to put an CSACS 5.8 as a secondary instance into a "distributed deployment" where the primary instance is running CSACS 5.3 When I'm trying to register the secondary server (5.8) to the primary, the following error occur: " This System Fa...

Hi, I am in the process of configuring policies for a new ACS 5.7 rollout.      We have a variety of devices, not just Cisco and I need to configure policies that will allow groups of users ONLY to those specific devices they are allowed to log onto...

Hi, I have this question, when the Cisco APEX Licenses are installed in a Cisco ISE? This kind of licensing can authenticate a wireless user? Thanks.

Hi Has anyone worked with Meraki splash page , getting forwarded to ISE for guest authentication ? Im very new to ISE, and we setup something basic.. We get the Guest login splash page, and the guest can go and do a self-register. Once he sends self-...

Hi, It seems like Cisco Network Setup Assistant (https://play.google.com/store/apps/details?id=com.cisco.cpm.spw.android.wifisupplicant) doesn't work on my device. Anyone else encountered this issue? Thanks, Bart

Hello All,     We have a 5508 Wireless  LAN Controller running 7.6.130.0 and Cisco ISE running 1.2.0.899 patch 17.  The issue is that when Android devices join the CWA redirect WLAN they are not getting redirected.  They do get the correct CWA access...

Hello,I'm trying to do machine and user authentication using EAP-TLS and digital certificates.  Machines have certificates where the Principal Username is SAN:DNS, user certificates (smartcards) use SAN:Other Name as the Principal Username.In ISE, I ...