Network Access Control

Resolved! ISE 2.4 ERS API - Can't seem to GET list of all Trustsec SGACLs?

I've started experimenting with the ERS API to automate some of our ISE deployment tasks.We create several SGACLs, one per port (i.e. RDP_TCP_3389) and use those in the Trustsec matrix to allow specific ports between security groups (ie clients to we...

Resolved! How users able to login to domain

Hi, I was wondering how end-users workstation able to reach ACS. Does it has anything to do with ip helper config in the switches?802.1X is currently not enable. All policy now control by ISE & ACS. But in the first place, without 802.1x config, how ...

ISE VM 2.4 stopped connecting to SFTP Server after upgrading to Patch 6

Hi. I wonder if anyone encountered this:After upgrading the ISE VM 2.4 to Patch 6, ISE is no longer able to connect to the SFTP Server.SFTP Server Software: CoreFTPNo changes and/or upgrades were done on the Core FTP Server.Furthermore, our ISE used...

Resolved! Is it possible to enable/disable ISE internal user using ERS REST APIs

Using either "name" or "id" of the internal user on ISE, is it possible to toggle the flag ("enabled") to true/false without changing any other attributes of the "Internaluser"?. I used <changePassword>false</changePassword> hoping that password woul...

Resolved! Windows OS compatibility for endpoints in ISE

Hello Team, I need your help in getting information on ISE compatibility for attached endpoint windows OS in my customer's Network. I checked the compatibility matrix below but could not find support for the OS highlighted in yellow in the attached s...

ISE Posture assest with un-define software

Hi all, I have clients want to check is the PC install Digital Rights Management (DRM) and ESCORT software before let that PC access network. I was checked and not found those software in support list of Cisco. Can i define it to check ? Thanks,

Resolved! New user account being denied - 15039 Rejected per authorization profile

Hi all, I am relatively new to the world of Cisco ISE. Here is my issue. We added a new account in AD to be able to access one of our wireless networks via a tablet. My AD account works fine on the tablet in question, and the new account is in the co...

Resolved! ISE with Threat Centric NAC

I am receiving the following error when trying to register Cisco ISE with Europe AMP cloud. AMPErrors: * Error while trying to register. Please wait 10 minutes before trying again.Is there a workaround for the listed error above?

Resolved! Network Device Profile

I am trying to create a device profile for organizational purposes only. I am trying to make one for Palo Alto and the plan is integrate Palo Alto into TACACS. Some issues I am having is when I check the protocol tacacs check box and save it, and the...

Resolved! ISE SCCM check always show as passed

Hi, We have a posture rule to check installed critical patches at SCCM system.I have set SCCM check based on ISA admin guide and based on this guidehttps://community.cisco.com/t5/security-documents/how-to-integrate-cisco-ise-with-microsoft-sccm-for-...

Resolved! ISE can not get the Internet

Hello

Resolved! ISE Certificate import/export

What is the best way to import/export all certificate including ISE signed certificate to another ISE cluster? Backup/Restore does not includes ISE signed identity certificate. Thanks Wing Churn

I need help with Nexus RADIUS Configuration to authenticate with Windows NPS

I need help configuring Nexus OS to authenticate against a Windows NPS Server Role. I have not been lucky with video KB on the web and I have not been able to find a Cisco KB that explain the exact config to make work with AD users against Windows NP...

Resolved! Windows OS compatibility for endpoints in ISE

Hello Team, I need your help in getting information on ISE compatibility for attached endpoint windows OS in my customer's Network. I checked the compatibility matrix below but could not find support for the OS highlighted in yellow in the attached s...

Resolved! ISE migration to public cloud --- AWS or Azure

ISE migration to public cloud --- AWS or Azure I have one of my customer that is moving services to public Gov. cloud, specifically Microsoft Azure. Please do we have any info for ISE in Azure or AWS officially. Please any pointers will be gre...

Network Access Control

Forum Posts

Resolved! ISE 2.4 ERS API - Can't seem to GET list of all Trustsec SGACLs?

Resolved! How users able to login to domain

ISE VM 2.4 stopped connecting to SFTP Server after upgrading to Patch 6

Resolved! Is it possible to enable/disable ISE internal user using ERS REST APIs

Resolved! Windows OS compatibility for endpoints in ISE

ISE Posture assest with un-define software

Resolved! New user account being denied - 15039 Rejected per authorization profile

Resolved! ISE with Threat Centric NAC

Resolved! Network Device Profile

Resolved! ISE SCCM check always show as passed

Resolved! ISE can not get the Internet

Resolved! ISE Certificate import/export

I need help with Nexus RADIUS Configuration to authenticate with Windows NPS

Resolved! Windows OS compatibility for endpoints in ISE

Resolved! ISE migration to public cloud --- AWS or Azure

acas integration

Sponsor Portal behavior after SSO

I have a question regarding the deployment of the ISE-PIC agent. Is it

Necesito configurar un portal de invitados "hibrido" en ISE 2.7

ISE Accept certificates without validating purpose will break 802.1AR

ISE certificates

ISE-PIC not receiving active sessions — only 5–6 users every few hours

CSCwq14246 - ISE internal disk check - ISE VM read/write issues

Cisco Catalyst 1300 and Dynamic VLAN

ciaco ISE 2.7 to 3.1 but it's using internal CA for authentication