Hello ISE experts, I am trying to solve an issue I have come across in my DOT1X design. I am looking to build a switching configuration that I can replicate across my company. I have been working in a lab designing different ideas and testing them ...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
I'll try to explain our current setup briefly. Our WLAN environment leverages Cisco WLC's, AP's and Cisco ISE 2.6. Our BYOD users are local users in our ISE db, when they connect to our BYOD WLAN they merely have to enter in their PEAP [not PEAP-TL...
Resolved! ISE offline feed update
Hi Team,I am facing issues with offline Feed update - I cannot proceed, because of error saying there is another update already running. The issue persists after reload of the ISE.Do you know what kind of process can block Feed update process?Many th...
Hi, Does Cisco ISE 2.6 supports Cisco Nexus 2k, Nexus 3K, Nexus 5K, Nexus 7K and Nexus 9K series of switches? The Compatibility matrix does not show them. If supported, can you please guide me to the link/documentation please? Exact models of t...
Hi there, I have been extensively testing the IPSK Manager tool and everything is working well except for the assisted onboarding captive portal feature. I am aware of bug CSCvs46399 and I am running ISE 2.6 Patch 8 (assuming the fix from Patch 7 is...
Hi all, I have an non elegant solution in mind for this issue on BYOD Android devices running version 11 and unable to select the "do not validate certificate". I understand this improvement on the version adds more security to the enduser connection...
Resolved! Cisco Macsec and licenses
Hello,what is the license requirement for Cisco Macsec? thanks
Resolved! ISE repository on local disk
Hi, I'm trying to set up a local repository for upgrade bundles, URT etc. on the host that houses my standalone ISE VM. I am wondering what path works for this - I created one called localiserepo on the host datastore, however, whenever I reference...
I am trying to get the IP phones authenticated using MAB without using the Cisco Plus license. We have around 55000 base licenses and just 1000 Plus license. We do have a lot of phones and computers in my network. in order to save Plus license, you b...
We upgraded our WS-C3560CX-12PC-S, from version 15.2(4)E7 to 5.2(7)E3. After the upgrade, our aaa tacacs+ commands didn't work. Here they are:aaa new-modelaaa group server tacacs+ MGTserver-private 10.125.196.167 key 7 XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX...
Resolved! ISE 2.7 UNABLE TO ACCESS CLI or GUI
Hello Cisco Community, I'm having trouble accessing a new ISE VM that I created and wondered if anyone has a solution for this. I've got one ISE VM built out and deployed and was going to create a second one to go into a redundant pair, but I can't...
Alarm Name : Supplicant stopped respondingDetails : EAP Connection Timeout : Server=<Name>; NAS IP Address=x.x.x.x; NAS Identifier=N/ADescription : ISE sent last message to the client 120 seconds ago but client still has not respondedSeverity : InfoS...
Resolved! Cisco ISE 2.1 - TLS 1.2
Hi, I have Cisco ISE 2.1 implemented and after I ran a vulnerability scan, I found that ISE is using TLS 1.0 and TLS 1.1. I pretend to disable both and enable TLS 1.2, but before I proceed, I have a few questions: 1. Is TLS 1.2 supported on Cisco ISE...
Hi Experts,Scenario:Creating a new ISE cluster.What are the bare minimum ports that are needed to be kept open to allow for a cluster formation for PAN, PAN and MNT nodes?
Hello Everyone, I need your assistance and ideas about the following syslog notification received from ISE server on our Arcsight solution : What is the reason for such a message knowing that it was not triggered an actual configuration change ?...
Recognize Your Peers
.jpg "VIP Advisor"){kind=icon}
