Hi, I wonder if someone can help me. I will appreciate it very much. I started the process to upgrade our ISE deployment consisting of 2 SNS-3615-K9 servers. These have AD-OS version 3.0 (with no patches) and I wanted to upgrade it to AD-OS 3.1. I re...
I’m running into an issue with some windows 10 clients.After the clients register in the Guest portal, and a successful logon page appears, instead of getting directed to the internet the clients are getting re-directed back to register.If the client...
Hello, has anybody made the experience that ODBC lookups might lead to "High Authentication Delay" on ISE PSN Nodes ? And has anybody a possible solutuion for that potential issue ? We have an ODBC connection to lookup MAC Addresses for NAC. Yesterd...
Good afternoon,Messing around in ISE trying to remove an endpoint and it is not allowing me to anymore. I reached out to one of my other coworkers who also administers it, and he can't either. Any suggestions? Picture attached. It is almost as if the...
We are planning to install patch 10 on the 2.6 version. We have patch 7 already installed with a couple of hotfixes like Log4j and another bug. My question is, do we need to remove the hotfixes before installing the patch 10 and then again install th...
Our ISE is smart licensed till yesterday all the license were showing in compliance. Today i observed an alarm stating smart licensing Authorization renewal failure. When i checked base license was showing released entitlement with the consumption co...
Questions on ISE, if I can get some definitive answers on how it works? 1. Grace period - when does it start? * Can it be pushed manually onto a client?2. Windows updates - when non-compliant shouldn't the update still run if allowed from an int...
Hi all,i'm stuck with a problem related to DHCP packets. The architecture is composed by:VXX 201 IP phone which is connected to the catalyst 3650 on gigabit 1/0/46(it authenticate via MAB)Catalyst 3650 which has a trunk interface (gigabit 1/0/48)ISE ...
Hello! I have a weird question.. I just can not figure it out. I know by default there are no access rules, therefore blocking, anything incoming. I am running an FPR1010. I installed an Ecobee Thermostat 2 weeks ago and remotely, I am able to change...
Hi All I try to test user and password from ISE to AD but it show authentication result fail but I can join Cisco ISE and AD and i can see all group user on AD from Cisco Cisco ISE and AD can communicate with name can ping with name work and NTP is c...
Hi all,i'm facing some problems with DHCP snooping config. The scenario is the following. An IP phone is attached to the Catalyst 3650 switch. The switch has a SPAN port that has as source interface g1/0/46 (interface to which the phone is connected)...
Hello team, We have a customer who doesn't have WSUS and would like to check for critical windows patches. I'm doing a check through the WUA (windows update agent). But, this flow is not working well, because AnyConnect takes a long time to check a...
Hi All, is there any way I can see what users are using TLS1.0 and export that to excel? or maybe if there is an API that can report that? reporting
We are using ISE authentication and posture assessment for VPN and wireless and need to figure out a way to have the drive mappings script run after posture assessment is complete and successful. I know AnyConnect can run scripts but has anyone done...
I have an ISE environment that we use for Tacacs, we are running version 2.6. The issue that I have is that for whatever reason, someone renewed the production TLS certificate on the primary admin node but didn't update the other nodes. So now wh...
