Network Access Control

Dear Community, I am trying to figure out what exactly need to be filled in in the profile editor to generate the xml for day 0 pre-deployment preparation. There are 2 fields marked mandatory to be filled in when I use the profile editor for posture,...

Hi Team,   I have a Customer that is going to a Hybrid deployment with 2x 3695 (PAN and MNT) + 4x 3655 (PSN). What is the recommendation in terms of A/S placement for PAN and MNT. Is it recommended to do Primary PAN + Secondary MNT in one server and ...

Hello,Newbs here. Just got 2 new ISE running v2.4. We enabled Client Certificate Based under authentication > admin access. We failed and now cannot login through the web gui to change back to password based. We do have access to cli via ssh.1. Is th...

Hi All.I have configured Cisco ISE Posture for blocking usb with Cisco any connect. with "AnyConnectDesktopWindows 4.3.5017.0" and "AnyConnectComplianceModuleWindows 4.3.795.6145" configuration, when plug usb device to USB port, the message "IT polic...

Running ISE 2.4, i am unable to create a report that includes the called-station-id fieldIt is not in the columns available for reporting.Is there a way to report on this AV pair?Can AV pairs from auth logs be exported via syslog?Much appreciated-Eri...

On a post from a few years ago Craig responded with the following details on the Config WMI button:   Sets the Windows Audit PolicySets permissions When AD User in the Domain Admin GroupSets required Permissions When AD User Not in Domain Admin Group...

Hi,I have my Prime and APIC controller authentication over TACACS VIA ISE. The issue im having is that every 5 minutes when the poling takes place between Prime and APIC I am seeing it in ISE TACACS Logs. I cant change the pole interval and the sheer...

Based on https://community.cisco.com/t5/security-documents/ise-performance-amp-scale/ta-p/3642148 I was wondering in the section related to ISE 2.4 RADIUS performance if these numbers represent the number of authentications per sec for each protocol ...

Dear All,  How can I customize the guest portal with a language select option in ISE?Example : 1. Guest Landing page in English.2. Guest wants to choose the language either from English or Spanish or German etc. How can we add this possibility in Gue...

Hi, I'm quite new to the ISE world, and I need some clarification. I am requesting a TRIAL ISE, for a client that wants to experiment with it, for access policys issues for visibility and control of their network After opening the Cisco case they are...

How would I go about pulling policy information through the ERS API's?  I've got a working python script that I have successfully pulled the EndPoint profile by searching with the Endpoint ID MAC address:https://<ise admin fqdn>:9060/ers/config/endpo...

I am having some issues with a policy authorizing staff & students against our external identity source LDAP. We have added two LDAP identity sources one that looks at the ou for all staff, the other looks at the ou for all students.staff_LDAPstudent...

Hi everyone, We configured a guest portal to force users to change their password at first login.  Just wondering if any way to send notification email with visible password to user registered email?  I have noticed there was an option to allow user ...

I have a customer which provision 500GB, size for ISE node, however after we check that the recommended size is 600GB, we increase it.   but can it simply change the disk size at vmware will increase?   below are the comparison before and after incre...