Network Access Control

Profiling Question:   I have a question about profiling.  I understand that it is used with ISE to make authz decisions based on what ISE can determine the endpoint is.  Profiling is used to help ISE learn this.  Few questions about profiling:   SNM...

I am looking for some assistance on how best to use a RADIUS server to pass RADIUS attributes back to an authenticator.Currently, the customer uses SteelBelted Radius.  The NAD sends an authentication request to SBR, SBR looks up the local user, auth...

Hi Folks,Customer is more than likely going to use REST API to use their customer portal pages for both My Device and Sponsor portals with ISE.My question is regarding HA with the REST API services. Reading the API guide it appears that the Primary A...

Hi All, we have a financial customer who is looking at deploying ISE for 60K concurrent endpoints with 2 x Admin, 2 x MnT and 8 x PSNs. They would like to get some guidance on sizing for additional storage for retaining the logs for up to 7 years. I ...

Hello,We are currently running ISE 1.4 Patch 5 (soon to go to 2.0) along with the Cisco WLC 5508 7.4.140.0.  We have a mandate to turn off our wireless during non business hours.  Currently, I have a script that runs to shut/no shut the switchport wh...

Hey Folks,When PSN receives an accouting-stop from NAD (WLC in this case) it will deactive session and free up the license. Is this information shared in the deployment in newer ISE versions (1.4 2.0 etc.)? See a scenario lets say doing MAB only, and...

I am trying to configure TACACS for WLC and am following this youtube video from TAC but when I get to the step where I pick device type WLC all I see is “All device types”Any guidance appreciated.

Hello,I would like to ask about the support of the SUP32 PISA of the C6500 (already EOL) with ISE 1.2/1.3.I found that the Sup32 PISA runs a software version 12.2(18) and the minimum compatibility with ISE 1.2/1.3 of the "ordinary" Sup32 for 6500 is ...

I am doing a greenfield install of ISE 2.0 for a client.  Using EAP-TLS for machine and user auth, but the client wants posture assessment as well.  I can get the laptop to install the NAC agent.  I only have the NAC agent installing on the unknown d...

Hi guys, I have a privilege level problem between an HP switch and the Cisco ACS server.Apparently the ACS server is not passing the parameters of privilege properly and this is causing the Users do not access the switch.Does anyone have any ide...