Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

Labels

Forum Posts

Resolved! pair of replicated ODBC ID sources (HA) - managing unreachable server scenario

Hello,   This setup uses a pair of SQL DB with replication, each server is setup as separated ODBC ID source in ISE (2.3 patch 6). Policies are made so that if attributes can't get retrieved from ODBC1, ODBC2 source would be used instead (OR conditio...

clandrai by Cisco Employee
  • 345 Views
  • 3 replies
  • 0 Helpful votes

ACS | Open port 25

Hello Team, We would like to seek your assistance in identifying if ACS connectivity to public ip is legit. We monitored that it was connecting to the said IP using port 25. How can we block from acs using port 25.  

Resolved! Port Bounce in Live Sessions with Meraki MS

Hi team,   I am trying to figure out if we can initiate a port bounce to a Meraki MS from the ISE Live Sessions logs.   In the Network Device Profiles, the Cisco and Meraki capabilities seem to be the same:   But in live with a C3850 and a Meraki M...

Picture1.png Picture2.png Picture3.png Picture4.png
slevesqu by Cisco Employee
  • 1313 Views
  • 1 replies
  • 0 Helpful votes

Resolved! ISE & Load Balancers

Hi,    We have a question on the use of SNAT for load balancing - according to the documentation at the following link: https://community.cisco.com/t5/security-documents/ise-load-balancing/ta-p/3648759#toc-hId-1865742776, it appears that the load bal...

Resolved! ISE CIMC Virtual KVM session timeout

Hello Team,   I'm currently working on installing ISE using CIMC. After trying to launch the Virtual KVM, the launcher downloads and when I try to open it, i looks like is going to open, but then I get "Login failed or timed out. Please try again."  ...

ksastoqu by Cisco Employee
  • 1105 Views
  • 1 replies
  • 0 Helpful votes

Resolved! ISE update URL's

Hello All,   I would like to confirm, what are the IP addresses expected to be resolved when using the URL for posture updates  https://www.cisco.com/web/secure/pmbu/posture-update.xml ?    Recently, that URL is resolving to these IP addresess:   o ...

ksastoqu by Cisco Employee
  • 729 Views
  • 4 replies
  • 0 Helpful votes

Resolved! DACL not shown for a NAD

Hello there, I created a NAD profile for Pica8 switch, now when I create an authorization profile I see the ACL and VLAN fields under the common tasks section but there is no DACL field shown. What should I do in my NAD profile to display the DACL fi...