Network Access Control

Hey everyone, I was wondering if someone could help me. I am trying to implement 801.x port security in my network. In our switch ports we have an IP AVAYA phone connected and a workstation connected to the IP phone. I enable dot1x authentication on ...

I would like to inquire cisco ASA do support 2FA( second factor authentication-example: One time password) or not?. Just to inform, I want configure my cisco ASA to authenticate vpn user using Active directory password and One time password as well. ...

Hello,I was wondering if most of you enable the ISE 1.2.x feature "Suppress Repeated Successful Authentications." (Administration/Settings/Protocols/Radius). At first blush this seems like a good thing as it cuts down the number of entries in the log...

Hi AllHas anyone successfully used a Guest Role in an ISE authorization policy?I'm using 2 different Guest Roles that get assigned by the Sponsor on the account creation page.I want to differentiate between the 2 roles in my authorization policies to...

Hello everybody.I am having some trouble when lots of users try to connect via Anyconnect on my ASA (5545-X).At the peak some users complaints they cannot authenticate and I see these messages flaping on logs:%ASA-2-113022: AAA Marking RADIUS server ...

Can someone weigh in on the thought of having an ISE environment of physical appliances attached to Fabric Interconnects? I am curious of the ability and pros of doing this. Has anyone done this? Are there other benefits than just CIMC via UCS? Was t...

Hi Support,does anyone know whether I can perform Certificate Authentication for two different Active Directory domains using the same ISE host / deployment?We have two forests with a trust link between them.We have a seperate PKI in each domain.I am...

Hi FolksWe have two ISE instances running in a virtual machine environment on a Cisco UCS . Both ISE’s are running version 1.1.4 and have been patched to the latest engine patch for that version (patch 11).   The primary is setup to be the administra...

Hello, on my ISE, I created some Security-Groups,  but when I want to create new Authorization-rule and apply those Security-Groups  as the Authz-Profile,  but I can not see the (Security-Group Folder) listed in the list.   only these 2-folders are l...

OK, I am a new ISE user and definitely an early beginner on creating ISE policies. I have successfully created a policy that can determine if you are using a corporate asset or not and using 802.1x authentication grant you access to corporate resourc...

does anyone know if cisco ISE version 1.2 patch 8 and Cisco ACS 5.4 patch 6 support snmp version 3? ciscoISE/admin(config)# snmp-server ?  community  Set community string  contact    Text for mib object sysContact  host       Specify hosts to receive...

Tested on Nexus 7 - Stock 4.2 and Galaxy Nexus running 4.1. Same result.Following TrustSec 2.1 Guides for ACL.When attempting to download and install the "Cisco Network Setup Assistant" from Google Play as part of ISE provisioning, getting errors whe...