Hello, We have ISE 3.3 Patch 4, we have enabled AD Probe, but not able to see attributes in Context Visibility and the endpoint profile is shown as unknown. We are doing EAP-TEAP with user certificate and machine authentication. DNS probe is also ena...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Hi, Am still navigating SDN with DNA Centre where I am upgrading device images using SWIM. I did an Upgrade to 9300 switches to a later iosxe image, after setting it as the golden image. What I don't understand is that even after successful upgrade...
Resolved! ISE, DNA, SDN
I want to schedule an external configuration backup for ISE, DNAC , which is the best workaround. I have veeam as an available option, however I see they support sftp which seem veeam does not support. Do I dedicate a server , eg linux server then ba...
Hello, We are implementing ISE at a customer and we have enabled posturing for windows clients. When we check the endpoint attributes in Context Visibility we are able to see an attribute "PostureOS". Is it possible to use this in profiling policy to...
Resolved! Cisco ISE DR DC Deployment
Hello Team,We have two small physical ISE appliances in main Data Center, both are using same personas (MnT, PSN, PAN and etc), in case I want to add two VM ISE (same model as physical) to the Disaster Recovery Data Center, does it mean I need to add...
I am using Cisco ISE and have Radius DTLS configured on my cisco switch using the IBNS 2.0 template. I have a GPO set to push out the Supplicant and have the following EAP settings "Verify the server's identity by validating the certificate". I have ...
Hi Team, Can someone give insight on this error please, We have more than 80 ISE Authorisation policies attached to a single policy set. If we try to remove one policy but when we click save getting attached error. Invalid Rank for rule:Default.Defa...
we're currently using Cisco ISE for user identity management, and we've noticed that ISE is showing all live sessions, including background/system logins and service accounts. However, for our operational needs, we only want to see interactive user l...
Resolved! Cisco ISE VM Interfaces
Hi Community Members,I am using ISE version 3.3 (VM) and currently vm has 7 interfaces out of which only one is in use. My question here is can I shut the other six ?
Recently I upgraded ISE VM from 3.2 patch4 to 3.3. After the upgrade, I was unable to access both CLI and GUI. GUI it does not open where as the CLI, soon after I enter the login credentials, it accepts and prompt again for the login. Multiple reboot...
Hi anyone Which file type ISE supported (.pfx) ( .crt + .key) or ( .pem + .pvk ) for guest portal ?
Resolved! IBNS 2.0 Template Settings
I noticed a couple things in the IBNS 2.0 Template that gave me a little pause. Any help would be much appreciated.1) I noticed in Cisco 9300 Version 17.12.04 this command does not work. Is there any recommended commands to use in place of this one? ...
Hello,I am looking for a solution for a customer.They need to use reauthentication for the industrial network.All devices are authenticated by MAB as they don't support DOT1X and they are afraid of any network disruption during the reauthentication p...
HiI have established an 802.1x environment utilizing credential and certificate-based authentication by configuring the Cisco 3650 switch along with a virtual machine that includes Active Directory and Network Policy Server.The credentials and certif...
Which certificate will be used on endpoint or supplicant is that trusted certificate should install it ?Why do we need system certificate with eap usage ?
