Network Access Control

Does anyone know how can I display the internal ID of the active directory join point?I need for a script (ERS), in the Doc they say: 1. Create a domain join point in ISE. In the "domain" parameter use cisco.com2. Get all defined join points and copy...

Is it a good practice to disable, thus removing MAB on a switch port that you know to have hosts that should be doing DOT1X only? Like Windows 10 clients for instance. Or is there a good and valid reason to keep MAB on the switch port config?

I'm working on a PoC design that includes ISE (version 2.7) and APIC-DC (version 4.2) Policy Plane integration for TrustSec. Per the ACI Settings page in ISE, ACI version 3.2 and above uses the Kafka method for integration but the only documentation ...

Hello Community Member.., I recently installed a trial version of ISE ver 2.7 in preparation of Changing my Old Tacacs box.the ISE Application Sever is fully operation how ever am having challenge in  setting up the ''Device Admin Policy Set ''  in a...

Hi, I am seeing context visibility->ep, status is Disconnect(grey) with IP address shown.However I am wondering shld I ignore this ep. OR add this ep MAC addressDoes "Disconnect(grey) with IP address" shows the ep has previously PASSED authentication...

Objective:- To combine configurations of two separate (2.3) ISE deployment into a (2.7) new deployment.- To refresh the old deployments (2 existing deployment)Overview:There are two separate deployments, and the new deployment must have both of the c...

Hello All While planning i came across this scenario and just want to cross check with the community.Hypothetical situation: If i have two vendor supporting my network devices ( say two vendors X and Y )X supports security devices say ASA firewallsY ...

Hello, we've on a Test ISE a list of local users, now the service shold be changed to the productive deployment.Is there a way to export the users and importing on the deployment? when we were migrating from acs to ise, I think this was possible, but...

I have a request to setup authentication for Splunk to make an API call to ACI, I get how to setup ISE for a login ssh and http, but REST API is failing, does anyone have a config guide or example for this?

Hi,How to check any profiling policies applied in ISE.If I say when this mac adders device 00-14-22-01-23-45  is accessing assign vlan x  ,Can we consider this as profile ?Thanks    

Hi Just reset setup my lab again to start looking a NAC for edge switches in monitor mode.I noticed no licences are showing up as being used, is this correct? I've reinstalled a 90day trial again, have 3 devices on, not showing any licence usage for ...