Network Access Control

Hi there,   Is it possible to create posture conditions for applications that show as unclassified? From what I can see, it is not possible and I am unable to classify the applications manually.   Thanks,

Hello, I upgraded my ISE deployment to ISE 2.2 patch 11. I see that ISE 2.2 patch 11 has since been deferred.   What does Cisco recommend as the stable ISE 2.2 Patch release? Should we wait for Patch 12 or roll back to 9 or 10?    SEVT on Oct 7-13 re...

Hello ISE Techs,   I've recently had four ISE 2.4 patch 4 servers (VMs) setup and built in a distributed deployment, however, I've started experiencing problems with two of the ISE Servers. I cannot load the GUI for these servers - one is the Primary...

Hi Team, Do we have some document regarding which ISE version is supplied with which Microsoft Hyper-V integration services version? If Host integration services version is higher than a VM one Hyper-V throws a warning that such a setup is not suppor...

Hi    since ISE doesn't support authenticated mail setup, how does one go about integrating with a cloud mail provider like Office365? Does this involve having to whitelist an IP address on O365 Mail Server? And if so, I suppose that means whitelisti...

Hello, I'm trying to add admin users to ISE Web Interface. These users already exist in Active Directory I don't have access to AD groups, so I want to add users as single entries, not as assets from an AD group. I want to have control on the new use...

A customer of mine has a deployment with approx 10k active devices.  Some of the medical devices with static IP addresses are not profiling beyond the ethernet vendor code.  Some of these devices share the same ethernet NIC vendor and it is hard to d...

Is it possible to copy individual policies between policy sets in ISE 2.4? I could do this in ISE 2.1 and ISE 2.2, but I am not seeing the feature.      Thanks,   Rob 

Team,   I am working with one of the Banks in India. They are running dot1x and posture on windows endpoints and IP Phones are getting authenticated using MAB. Edge switches are not PoE and IP Phones get power through power adapter. We are facing cha...

When using ISE as a TACACS server.   I know it is possible to specify multiple identity sources, (for example use internal first, then LDAP second, etc.).  However, I can't seem to find where in the ISE GUI this is configured -- can someone help me f...

Hello All,   I am trying to implement guest network using ISE 2.2 & WLC (aireos), with flexconnect (central auth and local switch). I am using separate interface in ISE-PSN for guest, but using the same management interface in WLC where other enterpr...

Hello I have a couple of questions on ISE. 1. How does one go about viewing the posture logs created in ISE. We are having an issue with a few anyconnect clients getting past the virus scanning engine. We would like to look at the logs and see what i...

Hi All,   Cisco ISE (2.4 ) is integrated with Microsoft AD. I would like to restrict ISE logins with AD logins like   These groups can be created in AD. Groug1 - Full access Group2 - RO Access Grout3 - Sponsor Access   I just want make some account t...

Hi there,In our authorization profile for guest users, we configured the Airespace Radius Attirbute "Airespace:Airespace-Guest-Role-Name" with a value of "medium". On our WLC we have a QoS Role named "medium" with the appropiate data rates.In the res...