Network Access Control

I am trying to come up with some resiliency options in case of a massive ISE failure. I have a critical VLAN setup on all switchports in case ISE is unreachable. My question is how do I deal with switchports that use dynamically assigned VLANs? If IS...

I am running into a situation where I have some WDS PXE endpoints in my environment that are triggering the anomalous behavior flag. Reviewing the logs in ISE shows that the DHCP class-id changes from MSFT 5.0 to PXEClient; I am assuming when they re...

Hello,   Have anyone tried setting up a guest portal FQDN mapped into two different IP address in which these two IP address corresponds to the IP address of PSN nodes?   Let's say for example PSN1: 1.1.1.1 HOSTNAME: psn1ise.company.com   PSN2: 1.1.1...

Hello, We are upgrading an ISE deployment from 2.1 patch 7 to 2.4. Do we need to patch the 2.1 deployment to patch 8 (Latest) prior to upgrading to 2.4 or is 2.1 patch 7 sufficient to upgrade from? Thanks,

hi experts:    My customer plan to purchase new ISE cluster to replace the old ones. Primary authentication is EAP-TLS+DACL. Couple of questions from customer: 1. From the scale guide section ISE 2.4 RADIUS Performance, it mentioned concurrent EAP-TL...

I have a customer asking for integration between ISE and Apple Open Direcory. I did a quick search and it seems that they use OpenLDAP, which is an open-source implementation of LDAP. Has anyone tried and knows if it might work?   Thanks

We are in the process of migrating from Local AD to Azure AD. Is it possible to use use both ADs as identity sources? We ISE for 802.1x wifi authentication at all our offices. To simplify the transition, it would be ideal if we can authenticate again...

Hi, I am trying to posture drive encryption on MAC OS X, ISE and Anyconnect is able to identify that the main volume which is encrypted with filevault BUT once I plug in an external HDD. Anyconnect is unable to detect the secondary drive. Should't AC...

Hello Every one, i got a new project CISCO ISE, I am not familiar with Cisco ise so i decided to do some lab setup for ISE in VM, any one please help me how to get the ISE image file. appreciated for all your help

Hi AllWe have created a sponsored guest portal using portal builder for ise 2.3. However when then social login option is selected after uploading the portal to ise the portal does not show the facebook page. Is this expected behaviour for portals do...

Hi I am trying to do dot1x/MAB authentication (there is no issue here), but I want to collect dhcp information of the devices asking for IP address from dhcp-server for profiling using device-sensor (cdp is being collected - no issue) but when I che...

A client requested the hostname on the PSN be changed because of the guest redirect URL which contains the PSN hostname. Unfortunately, the client don't like the URL display name.Apart form FQDN and Certificate, I want to know if changing hostname on...

Hi I'm having an issue with creating an Irule on our big ip f5 load balancer . Have anyone created an Irule that create persistance based off the CPM in the radius request. Cisco’s Audit Session ID (also known as CPM Session ID) is a unique value tha...

I have written a REGEX looking for "E" at 6th postition "MATCH ^.{5}(E). I have tested it successfull for "Network Access - UserName" but it is not working for "Network Access - NetworkDeviceName" where i need it -> anyone who have experienced the sa...