Hello everyone,I would like to ask if there is a recommended interface configuration for supporting all methods of authentication in closed mode. Also, in Closed-mode, i would like to know if an ACL is needed in order MAB to work properly.I am gettin...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
I have created a new SFTP repository on a ISE 2.3 Patch 4 primary admin node both in the CLI and GUI and run the Crypto host-key add host URL_of_SFTP server And I get the error below when I try to validate the repository. What did I miss for the co...
I am not even sure where to begin looking for the error. I recently discovered that my tacacs server (ACS 5.8.1) is allowing ANY username to authenticate - including ones that do not appear in TACACS. If you use a legitimate username and an incor...
Hello, I am trying to set up read only access to our nexus equipment using tacacs in ISE. I am currently following along with this documentation: https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/b_ise_admin_guide_22/b_ise_admin...
Hi Team, Can DNA Center use Azure AD (IDP) as an external authenticator ? I have found this info but not sure whether ISE to Azure integration then flows through to DNA Center?https://community.cisco.com/t5/security-documents/notes-on-azure-ad-as...
Resolved! Guest ticket creation (same day)
By today it seems to be impossible to create a guest ticket on a certain time of day until a certain time of the same day. You always have to end the ticket on the next day or have to run it until end of business day which also implies that the tick...
Experience during a PoC Customer has roughly 3000 LAN switches that sit on a common VLAN per campus site. At some large locations there are upwards of about 60 switches on one subnet (e.g. 10.100.1.0/24) We were using the Visibility Wizard to disc...
Hi all, we have 3000 Clients, most of them working without any Problems. But we have some strange issues with some MacBooks, sometimes.... :( Most of the Time all is working fine, but sometimes we got some Problems, so the Client can't connect anymo...
Resolved! ISE CIMC software strategy
Hi board, I'm wondering how others handle the CIMC in the Cisco ISE. In the ISE downloads, there is one BIOS and CIMC software (3.0.3a). However, there are lot's of CIMC vulnerabilities, which needs to be closed. The hardware installation guide doe...
Resolved! Patching nodes
Recently I was testing the application of patch 5 to 2.4. I chose to do the patching using CLI.I applied patch 5 to the secondary PAN first, the patch got applied without any issues, and the node is still connected to the cluster there has been no er...
Resolved! Cisco Profiler feed service down?
Is the Cisco ISE profiler service down? I am getting the following error when trying to make test connection:Test result: Failure: FeedService test connection failed : Feed Service unavailable : ConnectException invoking https://ise.cisco.com:8443/...
Hello , I would like to ask for a specific deployment on logging to Cisco ISE . I want to create a collection filter that will filter specific usernames and i want to send these logs only to specific syslog server . I am able to create the coll...
Hi all, customer has the question if a consumed license on the ISE is beeing release if a workstation which has the Wake-on-Lan feature enabled is going into sleep mode. Does someone has experience about that? Thanks in advance Roland
A new ISE customer is deciding between the legacy SKUs and the current ISE SKUs. If they purchase ISE 2.4 using the legacy SKUs, when they have to upgrade to the next version ( I'm assuming 2.5 or maybe 3.0 ) what VM are they entitled to? The leg...
Resolved! Sponsor portal disable known guests
Currently we are using ISE 2.1 latest patch. Is it possible to remove the possibility to create known guest accounts? We need only random guest accounts.
