When querying the pxGrid sessions interface I get quite a few more entries than I do from the ISE GUI interface (Live sessions). Upon investigation, it shows that the sessions which also appear in ISE GUI interface are in state STARTED or POSTURE, wh...
I'm looking to add some vyatta devices to our ISE environment for TACACS+ authentication. I'm running in to issues getting the correct Attributes sent to the device. By default, the vyatta dumps you in to "tacplus-operator" role when authenticating...
I have a two node deployment and the timezone is set to EST5EDT. The time display in the CLI and the bottom of the report window is correct. All the update times are in UTC. For example the timestamp of the first line of Live Sessions. Initiated ...
Hi everyone, ACS allows sending to TCP/Secure TCP remote syslog targets. The most important aspect for me of having a TCP option is for both acknowledging and buffering syslog messages. I would like to know if this is possible with ISE 2.4, sin...
Hi Experts, We are deploying ISE for our wired environment and we have a site that majorly has a mix of HP switches (Aruba and H3C). The configuration and testing of the Aruba switches was seamless, now we are stuck with HP5130 switch, the redirectio...
Not understanding the Max Merged & Easy Connect Sessions* (Shared PSNs) column in Table 1. Can you elaborate on that? https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/install_guide/b_ise_InstallationGuide24/b_ise_InstallationGuide24_chapter_...
HI, Can you please share how you manage to change VLAN on WLC per user login ? I have corp wifi with flexconnect and using one VLAN 10 , for unknown and non-compliant users that have only access to ISE . I user become compliant i want to change V...
I always change the password prompt in ISE for TACACS to "AD Password:" to signal to the network admin that TACACS is working. Older IOS versions don't respect the password prompt change and neither do Nexus switches. Has anyone gotten password pro...
We are having some strange issues with profiling: MAC book, OUI apple device, OSX MAC OS X but user agent contains "Windwos NT 10" The final profiling results is Windows10 workstation. the windows VM is on Paralells (shared mode). Also we ha...
Hello, I have an ISE 2.2 patch 10 full distributed deployment in which I am using Airespace-ACLs for wireless clients. It is works successfully except when client connect to a Flexconnect AP. Do you know if is there any limitation to use airspace-a...
Is it possible to install Cisco ISE 2.4 on Microsoft Azure? If so, could someone please provide instructions on how to achieve this? Is Cisco ISE 2.4 supported on Microsoft Azure yet?
Hi Is it possible to configure a SNS-3595 via a serial console cable to configure the initial CIMC config via CLI? If so, what is the baud rate, XON/XOFF etc. - and is this using with a standard blue (null modem) Cisco rolled cable? I worked on...
I suspect I know the answer to this, but thought that I would throw it out there anway...With Cisco ISE 1.2 is it possible to enable 802.1x machine AND user smart card authentication simultaneously for wired/wireless clients (specifically Windows 7...
Hi, I have an ISE RADIUS setup where I would like to return a different static framed IP address to a client based on the source NAS that issued the request to ISE. i.e. if NAS1 sends the request, return user1 framed IP address 192.168.1.1, if NAS2 s...
I have a doubt here. Is there any other options available to do authorization of printer which don't have any domain credentials ? other than mab and profile attributes ? combination of (mab + serial number + any) for authorization ? Is it possible...
