Hi team, How can I find what are the device are under one wlc in cisco ise. For example if I have a wlc named CN-UK-001.How can I know what are the network devices are under this WLC in Cisco ise
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
Forum Posts
Hi, We need to renew the Internal Intermediate CA certificate of our PKI. This Intermediate CA is used to sign certificates for our laptops and we do 802.1x EAP-TLS with ISE We need to renew the certs (only the expiracy date will change, private key ...
Hello Team, We are migrating our infrastructure from ISE 2.7(HA) to ISE 3.2(HA). ISE 3.2 is currently deployed in network by method backup & restore on new addresses. Some localities have even been migrated there. They run parallel to each other. My ...
Hi;Can anyone provide my some info regarding "IIF-ID" field, which is new in Catalyst 9K switches when running "show authentication sessions" command?Thanks
When using ISE Posture and the posture status fails, a Remediation timer is implemented for a period of 1-300 seconds prior to transitioning to AnyConnect Non-compliant status. During the remediation timer period, if the remediation action is "Messag...
Hello! Our management wants to implement a Microsoft Authenticator based second factor to our ISE vpn. Now we are using the ISE (FTD) vpn with only on-prem AD auth, and my question is how can we implement this Microsoft (Azure) Authenticator? Is ther...
Hi all;Based on CiscoLive 2020, session "Walking on solid ISE", as you can see below, using the "Network Access·AuthenticationIdentityStore" condition can reduce external ID store lookups. Right?I want to know that, how this condition can reduce the ...
Hi,I am trying to setup ISE posturing for guests/contractors but need to make sure that after successful posture(Compliant) it redirects to Guest portal for authentication and use credentials created in sponsored portal. So basically: Connect to Wi-F...
Hi all;Which operation/information triggers "aaa accounting update newinfo" command to send that to ISE?Thanks
**Please point me in the right direction if there is a better place to post this**ISE 3.2WLC 9800Mobile/cell phones using Random Mac AddressesWe have a single SSID in use for any non-corporate devices. This includes Guests/Visitors and Employees BYOD...
HiTesting 9800, ran in to a problem with certificate issue.What it was is my 9800 are in a device group called WLC9800 and my AireOS are in a device group called WLAN.The policy set for 802.1x specifes that the Devie Type is WLAN, Radius-Called-Stati...
Resolved! 3595 - Gui Log in failed after upgrade.
After upgrading ISE from 2.7 to 3.2, and then doing a restore from backup. I cant log into the gui. It keeps saying "an error occurred, please contact your administrator. Please notify your administrator , check your log file". Does anyone know what ...
Resolved! Radius Server Dead / Radius Server Alive
I am configuring an ISE 2.3 environment with 2 nodes When debugging the dot1x authentications in a 2960x switch I get the following 157525: Feb 21 10:36:10.562: %RADIUS-4-RADIUS_DEAD: RADIUS server 10.0.10.20:18112,1813 is not responding.157526: ...
Resolved! multiple data vlans across wired NAC
We have a campus network which is distributed across buildings using different data and voice networks. These vlans on the MDF are labelled as vlan 20 (data) and vlan 30 (voice). When deploying the wired NAC configurations on the distribution switche...
Resolved! ISE, EAP, and certs. Odd issue.
Ok, so for the longest time, my ise units have just been ise1.company.com, with an internal cert from our domain CA. This has worked fine until Android 11 and users being unable to set to not validate cert. So, I thought we could just get a public ce...
