I have 2 ISE nodes version 2.6 patch 2. ISE1 is the primary admin/MnT and PSN node that is behind a firewall interface. ISE2 is the secondary admin/MnT node that is behind another firewall interface. What TCP/UDP ports must be allowed across the f...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
Forum Posts
Hi Folks, Does the ISE SNMP Probe work for Meraki Switches like it works for Cisco IOS switches where it can get the MAC, IP address, and CDP, and LLDP information? Thanks
Hello community, I am trying to create a policy which tests for the existence of an either/or AV - though the application might be usefulfor other parameters. After research & trial & error, I have concluded that reaching out to the community is the...
Resolved! Cisco ISE and Remote Access VPN question
Company Acme wants to use ISE to authenticate against their VPN. They have different connection profiles for different access. They don’t use the dropdown, they use the URL. Acme.com/pci Acme.com/it Acmine.com/users Acme.com/facilities We have...
Hi Folks, What happens if you try and load ISE 2.4 code on a 3495? Are there any warnings or preventions? Also, will the URT tool flag you if you try and upgrade a 3495 to 2.4 when you run URT on it? I had a customer load 2.4 on a 3495 and I am wo...
I watched Jason Kunst's video on You Tube, and it inspired me to try SAW for myself. I loaded up my VM host with vWLC, version 8.8.120.0, and got ISE version 2.3 (ISE-2.3.0.298-virtual-eval) and gave it a shot:I'm running a clean install of vWLC, and...
Resolved! Logging Level AnyConnect NAM
Hello, Is there a way to modify the Logging Level from AnyConnect NAM? Customer is seeing a lot of logging messages (windows event viewer) from anyconnect. I also see that most of the messages are at debug level.
Hi, if Cisco ONE has been purchased which includes ISE Base licenses - can you please advise how do we get access to these ISE licenses? Are they Smart Licenses only that will appear in a Smart Account? Or is there a way to get PAK licenses from the...
Resolved! rebuild the SNS 3515 with 2.3 version.
Folks,We have to work on a rebuild the SNS 3515 by installing the 2.3 version from the existing 2.4 version. This is a new install and the devices got shipped with the 2.4 version. We went through some documentation in the below link:https://www.cis...
Resolved! ISE licensing for device administration
hi all For adding a device administration license, I can see the valid license options listed in the 2.6 administation guide as follows: Valid license options include: ISE Base only ISE Base and Plus ISE Base and Apex ISE Base and Device Admi...
Resolved! SNS-3615 console port is not responding
I have a brand new Cisco SNS-3615 and I am able to get the CIMC up and running and I can re-image the appliance through the CIMC interface. However, I connect my Windows 7 PC to the console port of the 3615 using the Cisco blue cable and putty termi...
Resolved! Multiple CRLs
Dear ISE team, A customer has two CRL servers for redundancy reasons. Is it possible to direct ISE to two different URLs to download the CRL from? Regards, Oren.
Hello,We have an issue on our ISE where when a user who works at another site most weeks. When they've been on the 3rd party network their anyconnect profile service updates on our laptops with the 3rd party server settings. When we inspect laptop th...
Resolved! Cisco ISE 2.2 Policy see matches ?
hello, wheere can i seen under 2.2 how many matches any policy rule have ?I know that i can seen that under 2.4 Norbert
Resolved! Profling OS Version
Hey, i'm trying to profile endpoints with DHCP Probe so i can sort out all "old" Windows 7 PCs. Unfortunatley they are not part of an AD and are only MAB enabled.With the Standard profiling policies in ISE 2.4 i only get "Windows Workstation" as an p...
