Network Access Control

Hello,We have a number of IoT sensors in our environment which needs to be profiled.For IoT devices which have DHCP enabled we have managed to leverage DHCP option request patterns and create custom profiling policies.However some sensors have been a...

Hi.I'm trying integrate ise-pic with active directory (using MS-RPC), the connection has established but the users information do not appear.The ise-pic agent installed on the DC show me the following message:"Rest Client, Error sending mapping {user...

Hi, I would like to enquire on REST API ability to get details such as (' IP' , 'host-name' , 'MAC-address' , 'operating-system')Is there a way that I can get all of those using the API. As far as I've tested, only 'MAC-address' can be obtained throu...

Hi Experts, Trying to deploy certificate from ISE to IOT devices for security purposes, but can anyone share which docs can i refer to ?- create iot device cert from ISE (export to device)- import ISE cert to the device- authenticate based on the cer...

We're only using Cisco AnyConnect for NAM not VPN. Version 4.10.04071We have employees at home using AnyConnect to get onto their home network and then connect to the corporate network via F5 Big-IP VPN tunnel. When the VPN tunnel closes or ends (man...

Hello All,I have a question regarding ISE. We want to profile various devices in the IoT sector. These devices cannot use dot1x, so we are using MAB. My question is, what is the most efficient way to create these MAC groups? Is it sufficient to leave...

Hi,How do I upload a NVM XML profile so it is deployed by ISE to the AnyConnect clients? Since there is not a specific "NVM Profile" option when adding a new resource, should I select the generic "Agent Resources From Local Disk",  then "Customer Cre...

Hi Community,I'm facing issues with anyconnect 4.10 in windows 11 computer. (Anyconnect Secure Mobility Client)I have configured a file profile "configuration.xml" in attached file (rename in.txt) with Network Access Manager profile Editor and push i...

When I run the ISE installer, it never gives me the opportunity to set an IP address.  It starts the installer automatically.  How can I pause the installer and get a static IP set  properly so it can download the packages?

Hello, I have an existing ISE deployment already integrated with Microsoft AD. Now we have an ongoing implementation of Cisco WSA and there is a requirement to use ISE for transparent authentication. So should I need to purchase additional license fo...

HiI recently upgraded an ISE deployment from 2.7 patch 7 to 3.2 patch 3. One of the PSNs failed during the upgrade so I deregistered the node and manually installed 3.2 patch 3 before re-registering it with the deployment.All services are working fin...

Per @Arne Bier request from another post :) Sharing two python scripts that have helped me automate some manual tasks here in our environment.  get_img_grp_macs_scrub: Runs and dumps a specific endpoint group to screen and creates a csv file with tot...

Hello, I can't configure the line con 0 with the command login authentication CONSOLE. I get the following error: sy-xxxx-ch-xxx-s-0xx(config-line)#login authentication CONSOLE Command authorization failed. The tacacs is up and running because I'm al...