Network Access Control

Ask Me Anything- ISE Integration Insights

Welcome to the Cisco Community Ask Me Anything EventWe invite you to participate in our upcoming Ask Me Anything (AMA) conversation. Please submit your questions from Thursday, April 23, 2026, through Thursday, May 7, 2026. Our experts Miguel Martine...

Resolved! Posture Assessment for IE11

Hello Everyone, I'm looking for some help with configuring a posture assessment in ISE that will check to see it a machine has IE 11 installed. The policy will run in audit mode.

Resolved! sh run blank result

I have CISCO2921 15.4(3)M4: aaa new-modelaaa authentication login default localaaa authorization exec default localusername rancid privilege 3 secret 5 $dfgdfgsdfhsdhdfghdfghdfgprivilege exec level 3 show running-config view fullprivilege exec level ...

Manipulate ACCESS-ACCEPT attributes

Hello,Is it possible in some way to manipulate/add the following ACCESS-ACCEPT attributes that come from a radius proxy? Tunnel-Type Tunnel-Medium-Type Tunnel-Private-Group-ID Using a Cisco ACS 5.5.0.46. Best regards,Roy

Resolved! IPS 4200 License

Hi, I want to install License in Cisco 4215 Series IPS. Please anyone can provide any reference document

Block out specific Active Directory Domain Controllers in ACS

My client has ACS v5.4. Their ACS appliances are learning unwanted Active Directory Domain Controllers (DCs) which are not in production yet. But yet they are learning them and selecting them as their desired DCs. Is there a way to block out specific...

Cisco ASA - authentification LDAP/Radius and Local simulatious

Hello, i have question about extended and local authentification database. I have account in LDAP/Radius database. But a few account are only local on ASA fw. Is it possible to use both database for authentification together. I mean this: 1. step ......

Resolved! Cisco Radius Authentication with Windows NAP with Encrypted Authentication

I need to setup radius authentication for Cisco IOS devices for device management. My radius server is NAP on Windows 2008 R2. Can I implement this with encrypted authentication? In the attached diagram, what protocol can I use for encrypted authent...

Default encryption on cisco router for radius authentication

Hi everybody Please consider the following config: What encryption will R1 use while communicating with radius server? Much appreciated!! R1(config)# aaa new-modelR1(config)# radius-server host 192.168.2.5 auth-port 1645 acct-port 1646R1(config)# r...

ACS 4.2 custom attribute problem

Hi, I am configuring a user account in ACS 4.2. I assigned privilege level 15 and exec access to user and it works.User can get into config mode. Now I am adding a few custom attribute to that user to enable configuration access to a ace context. Aft...

IBNS 2.0: Interface template does not work as expected on IOS 15.2.xE

Hi, all.I have been testing the new IBNS2.0 features for some days now, testing equipment is this:Model number : WS-C3750X-48PF-SSwitch Ports Model SW Version SW Image------ ----- ----- ...

ISE 2.0 support on ISE 3315 Hardware

Hello, Isnt it possible to install ise version 2.0 on the Hardware ISE 3315 series? If that is not possible, what is the alternate solution for me? I have ISE 3315 Hardware Thanks,

Cisco Prime Infrastructure and ISE Integration

Hi,I'm current struggling to get PI and ISE to integrate, these are running:ISE 1.3.0.876PI 2.1.0.0.87To integrate ISE with PI, on the PI server I browse toDesign > Management Tools >External Management Servers > ISE ServersI enter all the correct ...

Cisco ISE Guest Notification and Access Information disparity

Hi, I have noticed that when the Access Time allowed is set for a guest type, it doesn't automatically set the duration period in the Sponsor portal account creation page under the Access Information column. I find this strange and not intuitive. Thi...

NAC agent With Cisco ISE

Hi All, I've two ise node in a single group. the NAC agent is popping up properly when the traffic is redirected to the first node, but when the web traffic is redirected to the second node the agent doesn't pop up. i read about the issue, and i fou...

Resolved! Cisco ISE Whitelists

Hi All, I have to move from Monitor Mode for wired devices quicker than anticipated. I have policies tested/prepared for standard DOT1x laptops/desktops etc but not for all other legacy/non-standard MAB devices yet. So I have been asked to enable th...

Network Access Control

Forum Posts

Ask Me Anything- ISE Integration Insights

Resolved! Posture Assessment for IE11

Resolved! sh run blank result

Manipulate ACCESS-ACCEPT attributes

Resolved! IPS 4200 License

Block out specific Active Directory Domain Controllers in ACS

Cisco ASA - authentification LDAP/Radius and Local simulatious

Resolved! Cisco Radius Authentication with Windows NAP with Encrypted Authentication

Default encryption on cisco router for radius authentication

ACS 4.2 custom attribute problem

IBNS 2.0: Interface template does not work as expected on IOS 15.2.xE

ISE 2.0 support on ISE 3315 Hardware

Cisco Prime Infrastructure and ISE Integration

Cisco ISE Guest Notification and Access Information disparity

NAC agent With Cisco ISE

Resolved! Cisco ISE Whitelists

CISCO NAM installation by iso generated by System Center

can i USE 2 CISCO ISE posture policy in same time with 2 Anti malware

High Response time for Entra ID TEAP with ISE

Cisco C9200-M Meraki agent posture support - ISE integration

Ask Me Anything- ISE Integration Insights

Certificate Services OCSP Responder nearly expired

ISE databases - which one has the endpoints?

port-based network access control for Data Center - 802.1x (yes or no)

Cisco ISE-V-3.3.X: CSCuj78705 >Schedule Report Attachment through mail

Trying to Upgrade a ISE 3.3 Ptach 9 to ISE 3.5 Patch 2 upgrade issues