Hello team,Have anyone of you experienced with upgrade the ISE Evaluation 2.7 to 3.1 ?I somehow facing a problem in the "Prepare to Upgrade" stage as the "Platform Support Check" states that it needs at least 12 CPU for the upgrade.I check on the eva...
Hi , Everyone The EoS/EoL information for R-ISE-VM-K9 is announced by Cisco.https://www.cisco.com/c/en/us/products/collateral/security/identity-services-engine/eos-eol-notice-c51-741254.htmlAnd it will be EoL on February 28, 2022. But the document de...
Hello,I have dot1x enabled on all ports including those to which APs connected.My scheme is like this:clients -- Access Point -- Access Switch -- Access Switch -- Access Point -- Clientswhen a client moves from one AP to another, his mac address stay...
Currently I'm using ISE in front of most network devices and referencing an AD group for admins. That group membership isn't changing, but I do need to move it to another OU within Active Directory. What changes do I need to make in ISE, if any, si...
Good Day I have deployed 2 ISE Boxes at a customer Primary/Secondary nodes with Smart Licensing. The smart licensing works fine but after registering the secondary box I got this notification. A Secondary administration node is added to deployment,...
So, the Client Provisioning Policy is set to apply AnyConnect to windows based PCs. How can I skip this for say BYOD or Guest SSID?I can use Normalized Radius SSID contains BYOD in rules, but it doesn't exist in the provisioning section.
Team,We created a active directory users and are using this as an account to make API calls to the ISE. However, this does not work as intended and I get a "401 Unauthorized" error.However, if I create a local user in ISE this works fine.The way we h...
Hi all,I'm receiving this question from the customer. ArcSight is the SIEM they have to collect everything related to security.Log export in CEF format from ISEo We would like to collect ISE logging on the same central syslog server mentioned above...
Hello All, Here is the requirement: Guests will be given access using Cisco ISE using the standard guest flow. However, customer would like to have visibility about which URLs, applications etc. are being accessed by a particular guest. Technically, ...
Hello, We encounter a problem when the WAN link is cut between the remote site and the Datacenters. However, we have a domain controller server on the remote site which is not taken into account during these cuts. Is it possible to prioritize the cal...
Hello Cisco brains, I recently deployed Cisco ISE (3.1P3) and I'm running into an issue with Anomalous Behavior and Detection. I understand that in order for ISE to trigger an anomaly, it must hit the following:NAS-Port-Type - Determines if the acces...
hello.After installing ISE 3.1, the license was added through Smart License normally, but still the error as shown in the picture is displayed. Having trouble with the license addition process?
Dear @ciscoCommunity @ISE ,Greetings for the day.I have put 4 conditions for posture Firewall, File, USB and anti malware.However when I delete specific file and turn off Firewall of system it does not auto remediate as I have selected option for aut...
Hi,So i integrated my Firepower and ISE. I have a policy that trigger the ISE to quarantine or block the user access to my network. All of that work, but it got me curious. What method does ISE use to quarantine endpoint? Is it dynamic ACL? if it dyn...
HiI have a strange issue and no doubt I'm missing something basic but it has me scratching my head.I've been playing around with Guest portals. I have Guest 1 on Gig1 and Guest 2 on Gig 2. In my authorization profile I supply the portal IP address ...
