Network Access Control

I have a two node deployment and the timezone is set to EST5EDT. The time display in the CLI and the bottom of the report window is correct. All the update times are in UTC. For example the timestamp of the first line of Live Sessions.   Initiated   ...

Hi everyone,   ACS allows sending to TCP/Secure TCP remote syslog targets. The most important aspect for me of having a TCP option is for both acknowledging and buffering syslog messages.     I would like to know if this is possible with ISE 2.4, sin...

Hi Experts, We are deploying ISE for our wired environment and we have a site that majorly has a mix of HP switches (Aruba and H3C). The configuration and testing of the Aruba switches was seamless, now we are stuck with HP5130 switch, the redirectio...

Not understanding the Max Merged & Easy Connect Sessions* (Shared PSNs) column in Table 1.  Can you elaborate on that?   https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/install_guide/b_ise_InstallationGuide24/b_ise_InstallationGuide24_chapter_...

HI,   Can you please share how you manage to change VLAN on WLC per user login ? I have corp wifi with flexconnect and using one VLAN 10 , for unknown and non-compliant users that have only access to ISE .   I user become compliant i want to change V...

I always change the password prompt in ISE for TACACS to "AD Password:" to signal to the network admin that TACACS is working.  Older IOS versions don't respect the password prompt change and neither do Nexus switches.  Has anyone gotten password pro...

We are having some strange issues with profiling:   MAC book, OUI apple device, OSX MAC OS X  but user agent contains "Windwos NT 10"   The final profiling results is Windows10 workstation.   the windows VM is on Paralells (shared mode).   Also we ha...

Hello,   I have an ISE 2.2 patch 10 full distributed deployment in which I am using Airespace-ACLs for wireless clients. It is works successfully except when client connect to a Flexconnect AP. Do you know if is there any limitation to use airspace-a...

Is it possible to install Cisco ISE 2.4 on Microsoft Azure? If so, could someone please provide instructions on how to achieve this? Is Cisco ISE 2.4 supported on Microsoft Azure yet?

I suspect I know the answer to this, but thought that I would throw it out there anway...With Cisco ISE 1.2 is it possible to enable 802.1x machine AND user smart card  authentication simultaneously for wired/wireless clients (specifically  Windows 7...

Hi, I have an ISE RADIUS setup where I would like to return a different static framed IP address to a client based on the source NAS that issued the request to ISE. i.e. if NAS1 sends the request, return user1 framed IP address 192.168.1.1, if NAS2 s...

I have a doubt here.   Is there any other options available to do authorization of printer which don't have any domain credentials ? other than mab and profile attributes ? combination of (mab + serial number + any) for authorization ? Is it possible...

Hey guys   My client is migrating 4xACS deployments to 1xISE instance. The migration allows only 1:1 ACS to ISE. So my client migrated their biggest ACS env to ISE.   What is then the best way for my client to import the other 3xACS env policies to t...

Need a quick confirmation: on ISE 2.4 can a customer exceed license count without business impact both in short and long term? How about letting Plus/Apex lapse?   (I've seen out of compliance messages on 2.4 that worry me)