Network Access Control

Hello,I have a NAC 4.9(3) with a Virus Definition rule for McAfee 8.8.x that is showing this error message:From this error, It seems that winxp and win2k are not supported by this virus definition rule (for the installation it works fine), but from t...

Hi,Currently in ISE deployment , we have  2 ISE nodes with 1.1.1.268 version  with latest patch,ISE nodes hold following  personas Node1 :  Admin, Monitoring ,  PSNNode 2 : PSNHow will above deplyoment should be upgrade to 1.2 ? In which order they s...

There is a situation that I need assign ip address to guest users in the switch by ISE. Is this possible? If yes, How Can I do this?Thanks.

Dear all,Can somebody tell me all attribute that can make users change their  password after expiration when they want to connect on the network ? because they cannot. In the ACS log i can  see that user have to change their password.context : Dot1x ...

Hi,Please i need to have all configuration exemple and attribute that can make iphone and users authenticate on the same swith port.           

Hi,Is the following possible:- let the ISE do the authentication and then proxy to another radius server which does the authorization.At the moment we have a freeradius server that does the following:1) authenticates 802.1x requests (eap-tls)2) durin...

Hi,In my earlier post,  I raised the same question but let me rephrased it again. I have configured TACACS+ in cisco ASA firewall and able to access . But when I integrated it with RSA secure ID , I am not able to enter in enable mode. It is not acce...

HiI can't find customer report in V1.2 - i want to create a report for posture that can show not only compliance state but also rules that matched or not as i configured all my posture rules in audit state and i want to create a detailed report , any...

I have upgraded my ISE NFR to 1.2.  Upgrade went fine, authz/authn config still in place and works with switch and WLC.  The problem is now trying to apply a patch to 1.2.If I try to apply patch1 or patch2, the CLI says its already installed.  They d...

Guys,Having a lot of bother with getting ISE to work with a subordindate CA. We are implementing a wireless Proof of concept for our customer useing ISE as the security element.The customer would rather not change any settings on the root CA and woul...

Hi all,anyone see somethig like thisISE bp tcpdump: unstoppable• custoemr ran cpdump to understand bp CRLhe has. Then he wanted to stop  it but he was not able too click on the stop buttonunder diag tools TCP dump Status : Monitoring...(approcimate f...

Hi all,I need help with Self-Provisioning portal flow not showing the agent installation page after upgrade from 1.1.1 to 1.2 on a couple of 3315. I've configured all the pieces as instructed by BYOD SBA guide at http://www.cisco.com/en/US/docs/solut...