Does anybody knows how I can pick up attributes from profiled endpoint? Standart export function has very poor information. Is it possible through ISE API may be?
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Resolved! Converting from 34xx appliances to VM
Environment is running an ISE cluster with four 34xx appliances: - Active/Standby PAN & MnT - 2 x PSN Customer would like to consolidate into two appliances based on their concurrent session count and also migrate to VM since appliances due to E...
Hi experts: My customer wants to check the OS patch for MacOS and windows via anyconnect posture module. I think posture cannot check the OS patch derictly, posture module need to active the sccm agent or os patch mangement agent for checking OS pa...
Resolved! Impact of disabling Internal CA on ISE
Is there any impact of disabling internal CA in a distributed cluster if we are not using internal CA to issue any certs to endpoints or for any other pxGrid clients ? I know a distributed cluster has its own PKI hierarchy starting with root CA fro...
Resolved! Native Let's Encrypt ACME support in ISE
Any chance we could get a native Let's Encrypt ACME client in a future version of ISE (hopefully with DNS01 verification)? This would allow ISE to automatically replace certificates (802.1x, guest portal, server, etc.) without administrator intervent...
Resolved! ISE Deployment design
Hi friends. We want to design the Cisco ISE deployment for the network with the 1000 Clients. (only radius not tacacs).the node are only wire and there is no wireless node.which VM deployment size should we use? and should use the distributed design ...
Hi experts, my customer needs to migrate from acs to ise. this will be for administration access of their devices. they have non-cisco devices and 1 of them is bluecoat proxy. i have tried to configure the way i think it will work but unfortunately...
I have a router that is being updated and the radius-host command needs to be replaced. I know the new command to replace this is radius server {name} followed by server ipv4 {ipaddress} and so on however this only works with one server. I have two r...
Resolved! Cisco ISE VM - assign logical processors
The client has installed the ise nodes with VM similar to the 3595 appliance. Due to an inconvenience that arose, it was necessary to review a support bundle and there were some CPU alerts, due to this the recommendation to enable hyperthreading to a...
Resolved! ISE Easy Connect with trusted Domains
Hi all,We are going to implement Easy Connect with Trusted Domains. We have groups from domain A and users from domain B. TEST USER tool shows that ISE goes to joint point which is domain A but cannot find an user, then it goes to domain B and pull i...
Working on trying to use the guest portal to allow employees to authenticate with AD credentials for same level of access as sponsored guest users (internet only). Guest portal configured to use sequence with Guest Users first, followed by CORP (AD)...
Hello gentlemen,I have used this community and it has been very helpful in my ise environment deployment.I have one specific requirement but couldn't seem to figure it out. Sought and read info from this community but don't have answer to my specific...
There are other posts and the accepted solution was to use a different cert server, but that doesn’t apply to us. Since it works 99% of the time. We keep seeing this randomly. I’m lost on how to fix the issue. it resolves over time, but we really nee...
Hi Folks, In the past month my VPN AnyConnect is constantly reconnecting. From every 3 minutes to every 15 minutes at times. This is a major blocker for attending meetings and workflow interruptions. I've tried various changes from IPv6 disabling to...
Resolved! Sponsor Guest Portal
Hey guys, Currently I am trying to configure a Sponsor guest portal. But unfortunately I can not get it to work. First I create a Guest Portal calles "Test-ISE". For the guest type I chose the default Contractor. In the next step, I configured the D...
