Network Access Control

Is there anyway to force TLS 1.2 in ISE 2.3 patch 5? We recently installed patch 5 to remedy a bug and I was hoping to be able to remedy a vulnerability. Our vulnerability scans show TLS 1.0 open on both our PSN and Admin nodes. and under Admin->Sett...

Hello My customer is running ISE 2.0 on 3495 appliances, and would like to deploy Medical Nac   I see here https://community.cisco.com/t5/security-documents/cisco-ise-medical-nac-profile-library-v2-0/ta-p/3638736 it would need 2.1, which seems to be ...

Looking for a sanity check on support for SSID and Sponsor User Name fields in guest email notifications.  When added the SSID and Sponser user name fields are blank in the guest email.  On the wire it initially appears these fields are encrypted.   ...

We are getting FQDN information from the DHCP probe.  When we click on the host/device, we can see the FQDN in the Device Profile.  Is there a way to run a report that will list all devices with the associated FQDN?

MY customer has two ISE appliances (3595) running ACS 5.8. I understand they will need the Device Admin license and 100 base licenses, but is there any other license they will need to run ISE on the 3595 appliances?   Thank You.

Are there specific guides on how to scale ISE and AD with multiple regions and Datacenters.  The WLC's are centralized in the DC as well.

Hello,   I have a switch port configured to authenticate with order first MAB and then dot1X. The priority has been setup in the opposite way, first dot1X then MAB. I would like to re-authenticate devices (phones in this case) but it seems when I run...

Hi everyone.   I'm trying to quote a group of VM ISE servers and I'm not quite sure of the license we need:   Found on https://www.cisco.com/c/en/us/products/collateral/security/identity-services-engine/eos-eol-notice-c51-738715.html that the ISE-VM-...

    I have an ISE v 1.4, in which I have configured two captive portals and two portal sponsors. from the portal sponsor I am creating access users for the captive portal.   but at the moment I try to authenticate, it does not allow it and it shows ...

Hi   I'm trying to send attribute 30(called station) in my radius accounting session. This is working fine for attribute 31 (calling-station). I have the command  "radius-server attribute 30 original-called-number" in my configuration.   Any idea wha...

Hi, Just wanna check if anyone else had the same experience with 2.4 upgrade as us. GUI worked fine with 2.1. We have installed all 3 patches that comes with this version and that helped us with latency we saw with client authentication. Now we think...

Hi   I have created a MyDevices Portal where users can register a VM mac addresses to allow these VMs  onto the network when they run up a bridged VM on their dot1x host laptops. I have an ISE policy that purges these after 60 days. Is there a way to...