Hello,We are going to use Microsoft Intune as MDM and we would like to utilize EAP-TLS for devices. The provisioning has to take place without BYOD onboarding proccess in ISE as we are going to give devices to other people to do provisioning and then...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
I am submitting the following XML data: <?xml version="1.0" encoding="UTF-8" standalone="yes"?> <ns4:endpointBulkRequest operationType="update" resourceMediaType="vnd.com.cisco.ise.identity.endpoint.1.0+xml" xmlns:ns6="sxp.ers.ise.cisco.com" xmlns:ns...
> GET /ers/config/endpoint/bulk/submit/1565304304985 HTTP/1.1 > Host: omf-01-ise01:9060 > Authorization: Basic xxxxxx= > User-Agent: curl/7.64.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 404 Not Found < Cache-Control: no-cache, no-store, must-reval...
We upgraded ISE servers from v.2.3 patch 1 to v.2.3 patch 6. These are physical servers (not VM)Ever since, we started getting email alerts around the same time every morning for each node (admin, monitoring, policy)Health Status Unavailable : Serve...
Hello, I am facing a challenge. Ones I am done with omboarding process via BYOD, Cisco ISE issues 2 certificates. One based on certificate template and second with SERIALNUMBER. This becomes to be a problem when I want to connect a device to the SSID...
We have Windows AD and LDAP service in our environment, it supports 802.1x authentication, i'm wondering any difference between ISE and Windows LDAP?
I am looking for any documentation we have around the salability for ISE PSNs with respect to IPSec(ESR) as well as RADIUS over DTLS. The ISE performance and scale guides don't cover this and it isn't mentioned anywhere in the datasheet. Is this do...
Hi, I have a customer, whose only use-case for ISE-PIC is sending Identity information to Stealthwatch. In this case, 1. I assume that MAB will Not be required on the switch ? And ISE can provide the session information received from AD connector ...
Resolved! CWA port bounce
Hello, I am using a non cisco device with ISE2.4 and trying to configure the switch for web authentication.Currently as I have found out, when the guest enters username and password on the portal a CoA port reauthenticate command is sent to the switc...
Resolved! ISE 2.4 Posture (custom attributes)
Hi team, Question:'Our concern is mainly about the solution for windows update/patch check for the environment where not all critical/important KB updates (released by Microsoft) are getting installed to all client, instead specific KB updates are ...
We don't want enduser to manage their BYOD devices from MyDevice Portal. Is there a way to create and use an admin(manager) account to manage all Registered BYOD device from My Device Portal? If no, what is the best practice to manage these devices f...
I am in the process of configuring Tacacs+ (via ISE 2.3) to authenticate users of the Stealthwatch Management Console v6.10 (and desktop client). I see the functional roles with Stealthwatch but where can I find the actual commands I can configure in...
Hello All, We faced with an issue 5440 Endpoint abandoned EAP session and started newDevices:AP 3700 in Autonomous ModeCisco ISE 2.4PFSenseJuniper SRX Connection:Client <==Wireless==> AP(3700i) <====> Juniper SRX <=== IPSec ===> PFSense <=====> Cisco...
Here is a rough approximation of what I'm doing: var envelope = new XmlDocument(); var ns = new XmlNamespaceManager(envelope.NameTable); ns.AddNamespace("ns3", "identity.ers.ise.cisco.com"); var reque...
Hello All, We were testing “MDM onboarded mobile device connecting to 802.1x SSID use case” in our environment. The user certificate was pushed from MDM to the test mobile endpoint along with the 802.1x settings (EAP-TLS). While connecting the endpoi...
