Hi All, We try to integrate Cisco ise with brocade switch for radius authentication device. But after done the configuration can login brocade switch but cannot configure. Please help for my concern.
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
Forum Posts
I am trying to setup TACACS on some older Brocade switches running 7.4 OS. I have configured one attribute in the Shell Policy brcd-role=admin and that seems to work. However I need to also add a ChassisRole as well to have all the security attribu...
Hi,We want to sync the Users in Duo with the new function offered in Cisco ISE 3.3.Configure ISE 3.3 Native Multi-factor Authentication with Duo - CiscoThis is working properly, the connection works and users are synced. The only problem we are facin...
Resolved! TLS v1.2 Weak Cipher suites on PSN
Dear Cisco ISE, Currently we have vulnerability scan within our lab and found the weak cipher suites as below:Please let us know if we are running the weak cipher suites above or not? Does ISE only use the CBC or GCM if we are running EAP-TLS and MSC...
Hi all;I have several Catalyst 9200L switches (version 17.09.04a) and want to implement Cisco TrustSec on them, followed by integrating them with Cisco ISE. At the initial step, upon executing the 'cts credentials id' command, the following log messa...
Hello All, I have updated my ISE from 2.7 to 3.0 then i have updated from 3.0 to 3.1 The goal is to have it offline. As such i have performed a SLR (Specific License Registration) type of licensing. But now when i login to the ISE on the Web page i o...
Dear Cisco expert,Currently, I have testing lab and found that CDP/LLDP protocol is the unsecure protocol for showing raw info between switch to ISE server. Since the info could be benefit for attacker view the OS, IP, version within switch and endp...
Hello, Our Default self-signed server certificates are about to expire, so I need to know if is possible to renew them manually editing them on this way without breaking the cluster. Certificate to renew: Deployment, 1 prim admin, 1 prim monitoring...
Hello all,I am running ISE v3.1.0 with 2 nodes as PAN/PSN/MnT.I need for second node to connect with different Active Directory Server in other subnet.I've try with second node to Leave domain, but when I Join again is connecting to the same AD serve...
Hi all, I am planning to upgrade cisco ise from 2.0 to 2.3 , i ran URT Tool on Secondary admin node, its estimated time of upgrade was around 42 hours, i purged MNT data and tried running URT tool again to see the estimated time, but it says applic...
Hi Cisco Engineers, Have you experience a multiple authentication on one interface but there's no hub/switch connected to it. Only once PC connected to the interface but many Mac Addresses trying to authenticate (using 802.1x). As I traced the Mac Ad...
Hello friends I have Cisco ISE and Meraki in place to authenticate wireless clients (windows and Apple iPads) using eap-tls and certificate. The authentication process seems to be working and I see clients auto join the new SSID when they get the new...
Resolved! Posture provisioning portal and CPP
Hello Team,Under ISE Posture policies while selecting Redirect ACL/ URLI found 3 options to select Client provisioning portal(default)Posture provisioning PortalWhat is the difference between both
Hello,I have a distributed ISE deployment as below:ISE 3.1 patch 6PSN: 3 physical & 3 VM Admin: 1physical & 1VMMnT: 1physical & 1VM aaa group server radius ISERadiusserver name ISE-VMserver name ISE-physicalip radius source-interface xxaaa server rad...
Resolved! cannot access ISE GUI
Hi, today I changed the IP address of the gig0 and gig1 interfaces of the ISE 2.2 (version 2.2.0.470), but since then I cannot access the GUI. I can ping those IP addresses and even can establish SSH to the ISE CLI and issue commands, but the web pag...
