hi all, First, I would like to know how an session attribute (example Agent-Request-Type) behaviours in authorisation rule and posture policy rule Agent-Request-Type is a session attribute for posture selectively apply posture requirements eit...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Resolved! TACACS+ force enable secret
Dear Community We are using tacacs+ for aaa purposes. Currently each user has to submit their own username and password to connect to our switches. Once they are authenticated, they will have immediately access to the enable prompt. Now we would like...
please i need assistance
Hi, Anybody can assist in understanding me the Migration of Cisco ISE from old appliance 3315 to 3415. Current setup is running on 3315 with 2 node deployment 1250 Base and 1250 Plus licenses installed. since 3315 is End of life what would be the smo...
Hi, Just wanting some confirmation whether it is possible in ISE 2.x to have an ISE posture check for any anti-virus/anti/malware installed and running on a supported endpoint with AnyConnect ISE Posture module? The inbuild conditions in ISE can ...
Resolved! PSN - Dual Interface Routing Issue
Have a customer with the following setup with a Virtual ISE deployment - Separate PSN running 2.4 with latest patch PSN interfaces are setup as follows: Eth0 - is intended to be used as management only with communication to PAN, MnT, DNS, NTP, AD etc...
Resolved! ISE Radius Auth syslog assistance
Hi All, Any assistance would be greatly appreciated. I am sending radius auth logs to a Palo Alto for identity based policies. It works, but it seems every type of device sends the logs in a different manner for exampleUserName=DOMAIN\\isetestUserN...
Resolved! ISE via CDP concern switch upgrade
Hi, please forgive me if this is not the right forum section, but it brought to me a concern. We have to upgrade the WS-C3650-24PD that is connected to "both ISEs" when I do the show interfaces status, I can see both ports are up according to the d...
Guys, I'm wondering if backups of entire nodes of Cisco ISE 2.4 could be enabled on a DR site using vmware Site Recovery Manager (SRM). I'm sure this is not possible but I haven't found any reference of this topic on Cisco documentation. Cisco ISE do...
Resolved! ISE Profiled Endpoint Summary Report
When I run a Profiled Endpoint Summary Report, it seems like it is max'd out at 500 lines? Is there a way to increase this? Thanks
I need some ideas and strategies on deploying zero clients to a network with 802.1x authentication. Our network consists of Cisco ISE and Microsoft AD.1, What do I need to authenticate the machines and users?
I have setup Threat Centric NAC on Cisco ISE. I am trying to test the Threat Centric functionality with the Qualys vulnerability scan. I am using ISE version 2.6. I had no issue registering ISE with Qualys cloud services and I had no issue getting th...
Scenario: I have a MAB policy set where I permit various endpoints with some different profiler policies/logical profiles I’ve defined. Then the last rule is a default deny access. We have a subnet which we allow guests to connect on, and we want the...
Hi I want to be able to enable or disable specific ciphers or TLS versions for a specific authentication protocol definition Policy -> Policy elements -> Authentication -> Allowed protocols Currently all I can do is enable or disable weak ciphers (se...
Hi Team, customer is interested on posture lease feature where they can posture user once per day instead of every login. Saw below statement in tech zone. " To avoid re-posture at each session id change posture lease can be used. In this scenario i...
