Resolved! ISE PSN Positioning
Hi Guys, My AD, DNS, CA, and PAN/SAN are in my DC. Should I position my PSNs locally at my offices or should I deploy it in the DC also closer to the PAN, AD, DNS, etc.? Which is best? Thank you
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Resolved! ISE can not Import Server Certificate
I want to use 802.1x EAP-TLS protocol authenticate client,then requested web server certificate from Microsoft 2003 CA server and saved it to my PC, when I open local Certificates>Import Server page in ISE , there is "Private Key File" item,but I d...
Hi, We just installed Cisco ISE 3.1.0.518 Version 3.1.0.518 Installed patches 6 and 7 Product Identifier (PID) SNS-3615-K9 Version Identifier (VID) V0 ADE-OS Version 3.1.0.010 Access to the guest portal (wired and Wireless )is done with a username ...
Resolved! Problem with portal guest Cisco ISE
Hi,We just installed Cisco ISE 2.2 patch2. Version 2.2.0.470Installed Patches 1,2Product Identifier (PID) ISE-VM-K9Version Identifier (VID) V01ADE-OS Version 3.0.2.218We have the basic/wired license (no posture and no profiling)Access to the guest po...
HiWe have a mobility anchor to local eduroam hub, had this sicnce 2015.They have just upgraded there AAA to ISE, all working, but there is an issue.We have 5 cataylst WLCs conencting, we use these 2 vlan 621 & 622 in our corporate range and Eduroam H...
Resolved! ISE 3.X - can you mix licensing types?
Ex Essentials, Advantage & Premiere
ISE upgrades are a rare occurrence in my environment. My first upgrade from 1.2 to 2.4 involved a migration to a new deployment since a direct upgrade wasn't possible. I would like to upgrade 2.4 to 3.0 I have a simple two node deployment (virtual ma...
Folks,We have one requirement coming up on our NAC with Cisco ISE. We did test something like ensuring only applicable devices are able to connect to the network.e.g. with a Polycom phone we have done a match with vendor MAC OUI. However, what is som...
Resolved! Port-Authentication (dot1x) not working
Hello,Windows send EAPOL and there is no answer from the switch.This has work for feew weeks.What can I do?show auth sess int Gi121/1/0/9Interface: GigabitEthernet121/1/0/9MAC Address: UnknownIP Address: UnknownUser-Name: UNRESPONSIVEStatus: RunningD...
Resolved! Cicso B2B router logs on QRadar SIEM
I am looking for the details of which type of logs of CISCO B2B router are logged in QRadar SIEM. Regards,
Hi all;Is it possible to upload the ISE patch file to local disk of ISE 3.0 and above, create a repository of type "DISK" and then install the patch using the created repository in CLI?Thanks
We have a 6 node ISE deployment, which includes 4 PSNs. They are load balanced via an F5 load balancerFor the My Devices Portal setup would I need to create a new F5 VIP and load balance it between the PSNs I choose?Is there an option besides creatin...
Over the past few weeks, I have been working on configuring 802.1x port-based authentication between my Cisco switch (RADIUS Client) and the NPS Server (My DC) using EAP-TLS authentication.After completing the configuration on both sides following t...
Resolved! Admin Certificate Renewal: Impact
At the moment we have individual certificates deployed to each ISE node for Admin purpose. We also have wildcard certificate which we use for EAP Authentication and sponsors portal. The problem is that due to HSTS ISE PSN presents its own Admin certi...
Hello ISE experts,May I ask how to set up Cisco ISE to auto-restart after a power outage? Thanks in advance.My Cisco ISE Version is 3.1.0.518 with Patch 6Regards,Jerry
