What version of ISE is on 300-208 exam? Is it still 1.2? If so, when is Cisco planning to move it to a newer version?
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Hi experts my customers are running 2.2 on 8CPU 32G MEM VMs. now they want to upgrade to 2.4. The biggest challenge to them is to upgrade their memory allocation to 64G. They have a big cluster with 20+ nodes. They have been seeing that 2.2 is no...
Hello I thought that a fresh installation of ISE 2.4 would give me all the latest stuff I need for a BYOD deployment. Is there a reason why ISE 2.4 still uses code from ISE 2.2 era, despite the fact that there is newer code available (from ISE 2.3...
I'm doing EAP authentication and BYOD devices are enrolled using Microsoft InTune (whereby a WiFi profile is pushed to the device, including certs, trusted certs, SSID, etc). What I am being told is that Android devices are accepting the ISE EAP cert...
Hello, Is posible to install the ISE server on other server besides the appliance using the iso? I have found some reference about the topic: https://community.cisco.com/t5/identity-services-engine-ise/is-it-possible-to-install-ise-2-3-iso-on-3rd-p...
I have noticed recently that I am getting a LOT of Misconfigured Supplicant Detected messages, followed anywhere from 3-6 hours later by a "fixed" message. Example below:Misconfigured Supplicant Detected with EndpointID=00:1B:77:xx:xx:xx from user=h...
I would like to create an auth rule that only runs once when a new device connects to my network via RADIUS for the first time. For example, a new iPhone attempts to authenticate on the network, it passes AD auth and then will require this second for...
Resolved! VPN and ISE Profiling
We have requirement to allow users to VPN into our network on work equipment only (no BYOD). Do we have to use posture in order to meet this requirement?
Hi,I have a customer using some docking stations to which devices (Windows and Mac-based) connect via USB in order to get access to the wired network, external monitors and keyboard & mouse.The issue with this approach is ISE can only see the MAC add...
Hi Experts, Last time I was able to generate a report number using the radius authentication report from Reporting. But, it does not contain the number of devices that are compliant and non-compliant! There is a report in ISE for, Posture Assessmen...
My question is if ISE virtual appliance is running on a network and there are more than 300 users authenticated and authorized in ISE, what will be the impact on users if ISE VM fails and suppose there is no HA, can users connect and authenticated th...
Resolved! Standalone node upgrade from 2.1 to 2.4
We have a standlone ISE node running version 2.1 and we are planning to updagrade this to either 2.3 or 2.4. We are thinking of taking a snapshot of the existing server and build a new server (with a different IP and host) for upgrade purpose. I was ...
Resolved! EAP-TLS Configuration for 802.1X
I am working on a ISE 2.4 deployment and found a known issue where 802.1X authentication does not work when using Credential Guard with Win10. Therefore, I am looking into using certificates instead of PEAP. Does anyone have any good documentation on...
Resolved! cisco ise 2.4 system requirement issue
I am building a cisco ise 2.4 vm, this is only for 1000 nodes just using tacacs authentication (1 to 1 replacement for ACS) Has anyone set this up to use fewer than 12 core? It just seems like alot.
We've been told that our agentless / stealth temporal agent solution today is a part of the visibility setup wizard, that it is a feature that requires the user to launch from the dashboard of ISE. The wizard will do an NMAP scan of endpoints, add NA...
