I have configured AAA in my cat 9500 switches but while the service is active the switch does not allow me to use the local credentials of the equipment only those used by the active directory as I can do to enter with both local options as active di...
Hi, I am looking for building an HA solution for Checkpoint identity collector and I was thinking of configuring: Two Checkpoint identity collectors with each having two pxgrid nodes, so 4 PXGs but it is only supported on v2 pxGrid. Do someone kn...
Hello Team, I have this recurrent question on compatibility on ISR 1100 switch ports and ISE. I have noticed that ISR1100 does support 802.1X but not sure when and if we will have official support of ISR1100 on the compatibity matrix of ISE for AAA,...
Hi team, I know it's a recurrent topic but the only documentation we seem to have is this guide from back 2013 "Cisco TrustSec How-To Guide: Segmenting Clients and Servers in the Data Center Using the Cisco Nexus 1000V Series Switches": https://www...
Hi ISE team, New to SEC, so please bare with me :) In the ISE 2.4 compatibility document below (Table 2), it is stated that IOS XE 3.6.5E and IOS XE 3.6.7E releases on 3850 have been validated with ISE 2.4, which means they have been tested for c...
Dear all, Is anyone able to tell/advice me how to change behavior or "built-in" URL link called "Please read the terms and conditions." so it is not redirected to ISE built-in page but to my specific location (dedicated web server running IIS,...)? I...
Hi all, I know that ISE deployment phase should be Monitor Mode first and then Low-Impact Mode or Closed mode. In Monitor Mode the authentication open command needed to be applied to the switch port on Cisco switch. But i don't know on HP Comware sw...
Hi, With latest ISE 2.6, do we have an option for 3rd party VPN posture? Customer is looking at integrating ISE with their Pulse Security VPN termination and looking at posture for VPN client too. Thanks Wing Churn
Dear Experts, I am going to integrate Pxgrid in distributed environment. I have few points to clarify. I have 2xPAN, 2xMnt and multiple PSNs, I am going to add two Pxgrid in setup. Currently i am using Self sing cert. Keeping this in mind what wil...
Hello, My trooble is that i want to import some users on ACS. For exemple i downloaded the template show on file operations. the first line is: name:String(64):Required,description:String(1024),Email_Address:String(1024),"dateExceedsEnabled:Boole...
In a distributed ISE deployment, what kind of issues are expected when the latency between Primary PAN and any PSN in the deployment goes beyond recommended level of 300ms? Will that impact the authentication service of the PSN with high latency only...
The remove option on ISE 2.4 does not remove the endpoint, it just marks it as static false. anyone experiencing the same or have seen this in the past.
Hi Team, As far as I see ISE does support Windows 7 for on-boarding service: https://www.cisco.com/c/en/us/td/docs/security/ise/2-6/compatibility/b_ise_sdt_26.html#onboardingandcertprovisioning Does this support include Windows 7 Embedded OS as...
Hi. A customer that is running ISE 2.2 would like to add support to it, as it is not eligible for a renewal. They don't plan to upgrade at this point beyond 2.2, so I want to make sure that ordering R-ISE-VMS-K9= is applicable, once they are withing ...
I recently re-installed MnT and Admin nodes. I am running two nodes on VM with version 2.4 patch 5. I triggered OPS backup and it was 699KB in size. Why size it so small ?
