I did an export of all my devices because I need to change the description field for each device, the export has a simple passcode. When I update the "description" and save it, I next do the import however this is where it goes sideways. I select my ...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
We're currently testing tacacs from ise to tacacs profileSet Default Privilege to 1Maximum Privilege set to 15. My personal opinion isIf you set it as above, the switch will successfully log in to the tacacs account and if enabled in the > state, you...
Resolved! ISE 3.1 certificate issue
I do have a TAC open, but want to see if anyone has an idea while I'm waiting.So, we use a public COMODO cert for our portals. I just got the renewed cert and went to install it last weekend. With the new cert, all portals load with:This site can’t p...
I have currently been tasked with reviewing and improving the organisations NAC system (ISE), more specifically the classification policies. This involves reviewing and improving the current classification policies and aiming to reduce the number of ...
I would like to inform you whether it is possible to set a password lifetime policy for individual NW authentication user IDs in ISE. ------------------------------------------------------------------------------------------------ [Environment] Login...
Hi,we are building a large ISE cluster with 50 PSNs. We'll use it for WI-FI authentication in a corporate environment with managed laptops. Do we really need to put all 50 PSNs FQDNs in the SAN (or a wildcard?) as per documentation.Cisco Identity Ser...
Hello, I have a problem to import the Cisco ISE ca/key pairs. I have two node deployment, ISE1 and ISE2, where ISE1 was promoted to work as a primary admin node. I exported certificates from ISE2 successfully and stored them in FTP-ISE-CERT repositor...
I have recently implemented IBNS 2.0 and wondering what is the command to land on a vlan should auth server not be reacheable ?
I encountered an issue where my ISE servers in Administration > Servers > ISE Servers within Cisco Prime Infrastructure were marked as Unreachable. I deleted them and attempted to re-add them, but I ran into connectivity issues and user account stat...
Hi colleagues, Do you know if it is possible to create a Guest Self-Registration page with ISE portal builder and remove the pasword field or reset password? We are asking the user for a paassword but only entering the email address, accept the T&Cs ...
Need some advice please, trying to create new SSID with security to include PSK(WPA2+3) as well as 802.1x.It seems Security Type=Personal only allows for PSK, but 802.1x is for Type=Enterprise.How can I have both PSK & 802.1x on same SSID, my WLC see...
Problem Details: Cisco Application Deployment Engine OS Release: 3.2 ADE-OS Build Version: 3.2.0.401 ADE-OS System Architecture: x86_64 Unable to add repository to ISE deployment error message showing want to upgrade from 3.2 > 3.3I am able to ping t...
Hi,Getting a weird error in ISE 3.3 when importing the signed cert from our old deployment that we use for EAP. The import worked fine on the first node, but the cert did not show up on the other nodes (signed cert for guest automatically imported to...
Resolved! ISE and SOTI MobiControl MDM integration
We are trying to integrate the two together. I know it's possible - both sets of documentation state it works, but neither provide specific steps to accomplish it. To anyone that may have done this - can you give any insight on how it's done on Soti ...
In el process of debug dot1x of switch with 802.1x show message dot1x-ev:[Gi1/0/3] Dot1x authentication unable to start - Authenticator NOT enabled. The port not authenticates with 802.1x. The debug shows that the host sending packet EAPOl, both the...
