Hi all I'm trying to work out how to authenticate BYOD users, using the Common Name field in the cert. (Our CN field = UserPrincipleName (UPN) Thanks
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
I have a newly installed ISE 2.3 install in a DMZ and I am seeing attempts for my cluster to reach out to port 80 on this IP address 185.53.178.9. I can't tell if this is something I should expect from our node or if its safe to keep blocking it and...
Resolved! Cisco ISE Redesign and Licensing
Hi I currently have a distributed ISE deployment. An ADMIN VM in a data centre A monitoring VM in another date centre I am considering expanding this, to include a PSN layer, as the size of the deployment has grown. I have a 5000 user base for each o...
Hi Guys, I am looking for a good document that states the supported ISE features if I deployed it as an EasyConnect but I cannot see any over the internet. I would like to know if I can do the following if I will be using EasyConnect, - Certificated-...
Resolved! Device Import : Empty TACACS Section
Hello I am trying to import devices into ISE 2.4, everything works fine except that the imported devices don't have any Authentication protocol selected (in my case TACACS), though the TACACS shared secret is imported!! What am I doing wrong? Oh ...
We want to send about 100 radius attributes in a single radius session for users logging in. 1. Is there an upper limit on ACS or ISE in the number of attributes defined under a single authorization profile ? 2. Is there any such limitation in radi...
Hello Team Is it possible to add an additional 3615 to an existing cluster ISE cluster having 3515s as PSNs? any compatibility concerns or issues? cheers.
ISE 2.3 patch 5 I am doing byod with dual SSID, once the user onboards they switch over from the byod ssid to the secure corporate SSID. Then they go through posture check, if a user is deemed non-compliant is there a way we can force them out of t...
Can anyone help with this. I have an open SSID doing MAC filtering to ISE with the following auth rules; My devices is hitting correct rule for the unknown MAC but it is not redirecting me to the guest portal & is allowing me access in the ass...
Hi all, If ISE supports with Stratix 5700 switch or IE2000 how do we add it into ISE and does we able to see all the switch ports up to what level we will get visibility? The Scenario is, we have multiple Stratix 5700 switches and these are connected...
Hi All, Is it possible to use ISE and Trustsec to implement micro-segmentation on workloads in public clouds like AWS? I know we can use ISE+DNA Center to control access at the perimeter of the public cloud. The DNA Center can dynamically map a workl...
Hi, what OVA image should I download from Cisco.com for an ISE Standalone installation? Thank you, George
Hi, anybody noticed that the sponsor portal FQDN in ISE 2.6 doesn't work? It always redirects me to url with the FQDN of ISE instead of the sponsor portal. It has worked without any problem in previous versions. Best Regards, Jan
Upgrading from ISE 2.0.0.306 to 2.4 on a SNS-3415 is it supported ? One VM and one more appliance SNS 3415 please advise the steps and procedure
Resolved! Synchronize database into Cisco ISE
Hello guys, I have a problem...I need to create a synchronize database betewen two serveur ISE (ISE1 Primary server and ISE2 secondary server). More precisely, i would like the identities create on my ISE1 server to be automatically replicated to t...
