Hi,my customer would like to migrate from traditional licensing towards smart licensing. They want to use a proxy to have the ISE talking to the smart portal and want to configure this very resrective.So the question here is: What exactly is the spec...
I am trying to configure certain command sets in ISE 3.1.I need the user to only shut and no shut ports. I can't seem to get the correct syntax. The commands I have allowed work if I remove config t from command list it works. How can I make it so on...
Hi, I want to view crash logs of the application ISE on the CLI. does anyone know what *.log file should I view? and how to view it? Thanks.
Looking for steps on how to migrate ISE 3,0 from Physical to Virtual Machine. What we need to take care of from config and licneses perspective
I am posting this out those who just installed ISE 3.1 without patching, don't waste their time.I was trying to perform a simple regex match in command set.Sample "configure service vprn 2000 shutdown"Exact deny command works.Deny Always: configure s...
Hi,We have ISE 2.7.0.356 patch 9, with most of our switches on Cisco IOS XE Software, Version 16.12.05b, and some newer switches running 17.06.04For our LAN we would like the option to enable or disable all, or specific LLDP TLV advertisements, depen...
HiWe have many laptops that are un-compliant (missing drivers, OS, and software updates). We did our best to reach these end-users but still facing availability issues.I have asked Network team to help me out to prevent entering any un-compliant lapt...
Hi everyone, I'm interested in configuring PRA to reassess every X hours, to my understanding the enforcement is performed via a CoA action towards the NAD. I've configured the NAD (9300 switch) as a dynamic-author with client server and password, bu...
Hi all;The following figure has been taken from an ISE deployment after applying Patch 5. I have seen this situation in several production environment. Any ideas?
I'm trying to restrict the COPY command to two very specific commands:copy running-config flash:/candidate_config.txtcopy null: flash:/merge_config.txt But the null: and flash: arguments don't seem to work as arguments within the ISE command set. I ...
Hello,I have a question with a 2 ISE nodes setup and Guest portal.We will use eth1 for guest portal (with private IP).PSN1: eth1: 192.168.1.10 <=> guestportal1.company.comPSN2: eth1: 192.168.1.11 <=> guestportal2.company.comAnd we will use another fq...
HelloI am using Cisco ISE 2.7 in my infrastructure for MAB and 802.1X network access authentication. I have noticed a problem with Cisco Voip phones connected to a switch port. The problem is that after setting up the call to the mobile phone , the p...
Hi All , I try to find information about Maximum Mac Address can create in endpoint identity on Cisco ISE 2.7 or 3.x My deployment is 2 Cisco ISE HA (Admin+PSN+Monitor) Primary and Secondary . I see link below but not found the exact maximum number...
Hi All, I've recently been looking into some network automation pieces for Cisco products, and as part of that I need to be able to pull down all Context Visibility data for switches in the environment.The context visibility data is useful since it g...
HelloI am in the beginning stages of implementing Wired ISE / 802.1x using EAP-TLS. We have user and machine certificates and an internal PKI. For the most part everything is working. The very limited amount of users i put on this is working just fin...
