Hi All I try to make external identity ODBC integration with Oracle and ISE. and we have a table like following. According to this table i need to get framed-ip-address as attribute for return to the atuhenticated users. how it should be fetch attrib...
Hello, so i have the following problem i have an Stealthwatch and ISE integration at the moment and is working, i can see the 802.1x users on ise and stealthwatch with the ip and mac address, in that way everything is working as spected but when i do...
We are trying to use a custom set of letters for the guest policy within ISE to restrict "i's, l's" and other characters that users have issues distinguishing. We simply but abcdef in the Custom field but when we generated accounts it sill had lette...
We are using ISE 3.1 Patch 5 with JAMF integration. Using EAP-TLS authentication. ADCS for the PKI. Wireless works consistently. Wired is very hit and miss... much more miss then hit. The external MDM setup in ISE is set for SAN URI - GUID. The Legac...
I am trying to upgrade my ISE 3.0 environment to ISE 3.2 patch-2 with ZERO downtime and I can rollback with zero downtime should I run into any issues. I have a nodes SNS-3655 clusters:ISE1: Primary Admin/Primary MNTISE2: Secondary Admin/Secondary M...
Hi,After running the cts role-based enforcement vlan-list 200 in an access switch, the devices can no longer reach its gateway (SVI in a distribution switch) Without reachability to the gateway, outside connectivity is also lost.The uplink between th...
Trying to configure a device admin policy set for TACACS plus, using RSA to authenticate. I can get the Authentication to work and I see ISE talking to RSA in the tacacs logs and authenticating ok, however the authorization fails and says there is n...
I upgraded cisco switch 2960x to 9300 and copied all configurations from 2960x to 9300 and I didn't have any syntax errors, however the hosts cannot be authenticated by ISE when they try to access the Internet. On the intranet everything is fine. I a...
I have an international customer that is doing a self-registered sponsor approval required guest portal for their AsiaPac region. They have PSNs in the different countries in the region and want to customize the guest portal and sponsor portal per r...
Hi ALLWe ae planning to change the domain name on ISE with setup running on two ISE nodes. We have ISE nodes names as ise1.xyzindia.xyz.org and ise2.xyzindia.xyz.org . We are changing it to ise1.xyz.org and ise2.xyz.org. Trying to generate new CSR w...
Hi all;Does "authentication open" work for MAB, too?Thanks
Hello !! We recently came across an error with ISE and some Android devices. The failure reason is: 12948 supplicant sent unexpected unencrypted tls handshake message instead of tls application data in peap protocol. verify that supplicant is configu...
Hello, everyone,I am using Cisco ISE 2.7 in my infrastructure to control access to the network, and I have policies set up for MAB and 802.1x authentication. I want to enable the ability to block access to the network for PCs deemed suspicious. The e...
Hi all, I saw a conversation about this from a few years ago. Can someone at Cisco please confirm if ISE supports EAP-SIM, EAP-AKA, or EPS-AKA, of if there are plans to do so. If not, do enterprises still have to rely on CPAR, and how would that int...
Hello.Upgraded ISE patch version from 3 to 12After the upgrade, I entered the 'show version' command and it says============Show version =============Cisco Application Deployment Engine OS Release: 2.6ADE-OS Build Version: 2.6.0.900.55ADE-OS System A...
