Hi all,We currently run our ISE nodes on virtual hardware on premise and are now looking to shift our infrastructure to the cloud.I know its possible to deploy ISE nodes in Azure but i seem to recall documentation that suggests the ISE nodes cannot b...
We are making the transition from TEAP (Cert machine auth, MSCHAPv2 User auth) to TEAP (Cert machine auth, cert user auth). ISE 3.1 Patch 5. Windows 10 22H2 clients. Ran into a snag. If I logon to a machine configured for mschap for the second phase,...
Hi all;Consider the following scenario:I this scenario I configured the router with 2 sub-interfaces with the following configuration:WebSRV is 192.168.100.100 GW: 192.168.100.1DBSRV is 192.168.100.1 GW: 192.168.100.1FTPSRV is 192.168.101.100 GW: 192...
Hello everyone!We are using syslogs for monitoring. I have multiple deployments that are very similar to each other.But I just found out that one of them is different when comes to syslog messages.My syslog monitoring is expecting to see this message...
Hi Team, We have a Cisco ISE 4-nodes version 2.7 with the 7500 Apex licenses. Out of 7500 licenses, 2500 are going to expire soon. Do I get the eval period of 90 days for 2500 Apex expired licenses?
Hi,my customer would like to migrate from traditional licensing towards smart licensing. They want to use a proxy to have the ISE talking to the smart portal and want to configure this very resrective.So the question here is: What exactly is the spec...
I am trying to configure certain command sets in ISE 3.1.I need the user to only shut and no shut ports. I can't seem to get the correct syntax. The commands I have allowed work if I remove config t from command list it works. How can I make it so on...
Hi, I want to view crash logs of the application ISE on the CLI. does anyone know what *.log file should I view? and how to view it? Thanks.
Looking for steps on how to migrate ISE 3,0 from Physical to Virtual Machine. What we need to take care of from config and licneses perspective
I am posting this out those who just installed ISE 3.1 without patching, don't waste their time.I was trying to perform a simple regex match in command set.Sample "configure service vprn 2000 shutdown"Exact deny command works.Deny Always: configure s...
Hi,We have ISE 2.7.0.356 patch 9, with most of our switches on Cisco IOS XE Software, Version 16.12.05b, and some newer switches running 17.06.04For our LAN we would like the option to enable or disable all, or specific LLDP TLV advertisements, depen...
HiWe have many laptops that are un-compliant (missing drivers, OS, and software updates). We did our best to reach these end-users but still facing availability issues.I have asked Network team to help me out to prevent entering any un-compliant lapt...
Hi everyone, I'm interested in configuring PRA to reassess every X hours, to my understanding the enforcement is performed via a CoA action towards the NAD. I've configured the NAD (9300 switch) as a dynamic-author with client server and password, bu...
Hi all;The following figure has been taken from an ISE deployment after applying Patch 5. I have seen this situation in several production environment. Any ideas?
I'm trying to restrict the COPY command to two very specific commands:copy running-config flash:/candidate_config.txtcopy null: flash:/merge_config.txt But the null: and flash: arguments don't seem to work as arguments within the ISE command set. I ...
