Welcome to the Cisco Community Ask Me Anything EventWe invite you to participate in our upcoming Ask Me Anything (AMA) conversation. Please submit your questions from Thursday, April 23, 2026, through Thursday, May 7, 2026. Our experts Miguel Martine...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
Forum Posts
I want to prefilter Teams media traffic on the Cisco Firepower FTD and i create a corresponing rule that prefilters the affected traffic. But i wonder, what happens to the return traffic from the Microsoft Datacenter to our network? Do i have to crea...
Greetings,I'm trying to figure out how best to implement 802.1x port-based authentication on a network that supports multiple tenants. We control the distribution and access switches with clients connecting to multiple domains on different networks....
I am running ISE 3.0 patch-7 and I use certificate based dot1x for authentication.When the device is successfully authenticated, I see TLSversion and TLSCipher in the ISE log. I also configure the ISE to send these messages to external syslog server...
Hi All I've got an ISE 3.1 P4 and have a slight issue. I have a guest portal running, where a user can register his device for 365 days. I do have a few guest clients with hardcoded proxy settings, so those MAC addresses I manually add into the group...
CISCO ISE 3.2 Advanced Attributes Value field not showing:I'm trying to create Authorization profiles for a virtual appliance for radius authentication. Somehow I was able to create one on another appliance, but I'm trying to replicate the same scena...
Hi all;Please look at the following figure:Any ideas?Thanks
Hi,After performing a restore of configuration Backup in Cisco ISE, I noticed that my main PAN lost connection to AD.The remaining nodes (PAN secondary, PSNs, and MnTs were ok after the restore).Is this the expected behavior?To solve the issue I had ...
Hi, I have a doubt.I am using Cisco ISE guest portal to register Guest users.I have configured a public FQDN to assign to guest portal, since Guest will not have access to internal DNS.My question is:Where should I insert/configure this FQDN, in the ...
Resolved! Passive ID and Read-Only DCs
I am sure this is documented somewhere, but I can't find it. Does passive ID support RO DCs? When I bring up the DC list in ISE I don't see any of my customer's RO DCs. The SourceFire user agent support RO DC monitoring and we are trying to replac...
Resolved! ISE License Type Consumption
Hello, Having an OT environment of around 300 endpoints, where as 250 are entitled only for MAC based auth and rest 50 are Dot1x supported. In this usecase which type of license needs to be purchased (Ess / Adv / Prem) and what is the count ??? Thank...
Resolved! ISE PSN Positioning
Hi Guys, My AD, DNS, CA, and PAN/SAN are in my DC. Should I position my PSNs locally at my offices or should I deploy it in the DC also closer to the PAN, AD, DNS, etc.? Which is best? Thank you
Resolved! ISE can not Import Server Certificate
I want to use 802.1x EAP-TLS protocol authenticate client,then requested web server certificate from Microsoft 2003 CA server and saved it to my PC, when I open local Certificates>Import Server page in ISE , there is "Private Key File" item,but I d...
Hi, We just installed Cisco ISE 3.1.0.518 Version 3.1.0.518 Installed patches 6 and 7 Product Identifier (PID) SNS-3615-K9 Version Identifier (VID) V0 ADE-OS Version 3.1.0.010 Access to the guest portal (wired and Wireless )is done with a username ...
Resolved! Problem with portal guest Cisco ISE
Hi,We just installed Cisco ISE 2.2 patch2. Version 2.2.0.470Installed Patches 1,2Product Identifier (PID) ISE-VM-K9Version Identifier (VID) V01ADE-OS Version 3.0.2.218We have the basic/wired license (no posture and no profiling)Access to the guest po...
HiWe have a mobility anchor to local eduroam hub, had this sicnce 2015.They have just upgraded there AAA to ISE, all working, but there is an issue.We have 5 cataylst WLCs conencting, we use these 2 vlan 621 & 622 in our corporate range and Eduroam H...
