Hi I created the policy sets for hotspot portal but I am not seeing my endpoint redirecting to the portal. I am being allowed access to the internet. I am running ISE 2.4 p9. I have added the ise fqdn in dns. portal test URL is working. The guest flo...
Hi I hope you guys have already seens this. I am trying to assign a mac to a group (static assignement) and I get this:Unable to create the endpoint.Endpoint ZZ:ZZ:ZZ:ZZ:ZZ:ZZ already exists However when I search for the specific MAC address I can'...
Hi,I have integrated Aruba wireless controller with Cisco ISE 2.6 for wireless user posture checking. We use EAP-FAST and everything works a expected. But I noticed that in ISE the posture report shows the identity as machine name instead of username...
Hi Team, Checking an ISE design for 2 Data Centers, using 2 appliances for PAN and MnT in redundancy and 2 appliances as PSN I would like to confirm if there is any way to avoid Split Brain situation. For example; installing one appliance with P...
Cisco WLC Software Version: 8.5.140.0Cisco ISE Version: 2.4.0.357 with Patches 5 & 6Documentation followed: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html#anc12 After following the above d...
Hi,I'm looking for way to remove SXP local bindings from ISE as a part of 'server decommision' workflow using external API-tool.to delete sxp binding - first I have to discover 'ID', but I can't find method to find specific binding by 'ipAddressOrHos...
Hi, In ISE 2.4, can we send internal user password expiry notification to user, if user mail account and SMTP server is configured appropriately? If yes, is this email text configurable? I can't find any related setting so far. Best Regards, Kaori
Hello I'm running ISE 2.4 and I'm trying to get NAC via dot1x/radius working. I have a NX-OS 9K switch in my network devices with correct radius key. I also have a default policy set to accept dotx wired users and allow them to do anything. On the...
Last week we had one of our 6807XL crash on Thursday 10/10 (case # SR 687680740). As we were troubleshooting the issue with the 6807XL, we noticed some issues with ISE and WLC cluster not coming back up correctly after the crash. We have n...
Hi board,in the configuration guide for IOS-XE, the following multi-auth limitation is described: In the Multi-auth Per User VLAN assignment feature, egress traffic from multiple vlans are untagged on a port where the hosts receive traffic that is no...
I have a Cisco 2901 router configured to allow access to a DVR device using NAT and ACLs from the Internet. I can't lock down the ACLs to a source IP due the customer's DRV app needing to access the DVR from anywhere out on the Internet. I see port ...
Hi, I was wondering how I would figure out if all ISE 2.4 features in code version 15.0.2-SE11 on multiple cat3k platforms are supported. I have followed the release notes of and matrix, and while this code version falls in-between the minimum and...
Hi.I would like to know if it is possible to implement ISE 2.2 on a WS-C2950G-48-EI,because it does not appear in the compatibility matrix of the respective version.https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/compatibility/ise_sdt.html#242...
HiI have 2 ISE servers 1 for HQ one as a BackupIf i have bought 500 base/apx/plus licenses.Do i need to split tje licenses for each site? or all 500 must go to the main HQ ISE server and if it fails it will go to the backup ISE server
Hi guys,today I am faced with a NAT issue and want to ask you for your valued advice.An external host (and only this host) should access the outside interface of the ASA (OS rel. 8.4(7)30) and this should be translated to an internal server for all k...
