Hi all, Just looking for comment if I should continue with the actual upgrade from ISE 2.1 to 2.3. Looks like URT to run successfully (after all the kinks), but the 'Time Estimated to Upgrade" gave an error.thanks in advance!KevinMyISEBox/admin...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Resolved! Reset M&T Database
HiWe've got a current problem with logs, our support company had opened a TAC case.Basically they are saying to reset the M&T database.I can't speak directly to cisco as via 3rd company, what is the affect of resetting the M&T Database on a deploymen...
Resolved! EPS Remediations not work
Hello, Team.We have configured FMC to ISE connection over pxGrid.We atre trying configure correlation rile to quarantine endpoint.Nut we see this alert in FMC: ISE Connection Status MonitorEPS Remediations currently in use will not work with the curr...
Resolved! Specify Folder on ISE FTP Server Setting
Hi Guys, I have an FTP server that is shared. I want to use the same FTP server to automatically backup WLC config into a folder named WLC. Can ISE do this? Because when I add the FTP server only IP address is added and ISE saves it on the root fol...
Resolved! DACL, WLC, and ISE: Unsupported?
Hi, I've seen a lot of conflicting information on this topic and am looking for a firm answer. It appears that Airespace-ACL can be used to point to an existing ACL on a WLC. So if I have a user authenticated via Wireless (802.1x), Airespace-ACL can...
I have taken over an ISE deployment in mid stream, while setting up all the proper configuration for the job (ACS to ISE for TACACS) I needed to have them stop VM Snapshots and setup the backup options. I haven't set this up before so not sure if DI...
I have a bunch of endpoints that have failed for one reason or another. They are clogging up my CV and I want to get them purged automatically. You can see from the image that they fail at a point where they don't even hit a rule. There are some basi...
Hello: I'm running ISE 2.6 and need to change the timezone on my 2-node deployment. Both the admin and CLI command reference guides for 2.6 suggest that this can be changed with a restart of the application, but this does not seem to be correct: ise-...
Hi Guys, I have 5x nodes running in VM in distributed deployment mode (PAN/PMnT, SAN/SMnT, 3x PSNs). Our old VM servers will need to be migrated to the new VM servers which means the ISE should be migrated also to the new VM servers. Connectivity bet...
Resolved! Testing local username
Hello,We have configured AAA authentication on our routers with RADIUS server authentication. As a backup option a local user and enable secret password has been configured.So far RADIUS server is working fine so there was case to test the locally c...
Resolved! ISE 2.7 on BE7M-M5-K9?
I have a two-node VM ISE deployment on version 2.7.0.356 that is running into IO read / write issues and need to move them to different hardware. I have two new BE7M-M5-K9 servers with enough available resources. Can I do a cold migration from the IS...
I want to test passive ID with AD integration, not WMI, and I am reviewing this document:https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/pic_admin_guide/PIC_admin/PIC_admin_chapter_01000.html#task_784A7F6991594B11B1BAD206FDCD249BI’m asking abo...
Hi,I have the following situation currently running a 2 node ISE cluster version 2.6. The hardware needs to be replaced by virtual appliance and would like to upgrade to version 3.1 in the mean time. I would also like to maintain current IP's.What ...
- FYI : https://www.cisco.com/c/en/us/support/docs/field-notices/724/fn72427.html M.
Hi all,i'm dealing with a strange behaviour for profiling (with device-sensor) in ISE 2.7. Cisco config for LLDP filter list is shown below:device-sensor filter-list lldp list LLDP_LIST tlv name port-id tlv name system-name tlv name system-descrip...
