Network Access Control

Hi all,   I have a maybe basic question about SGACL-enforcement locally on access switches: Let’s assume I have two access-switches within a L2-deployment (Access-Switch A and Access-Switch B). On Access-Switch A User_a is being authenticated, he get...

We have purchased 3650 new switches 40, configured 5 switches per stack with total of 8 stack switches to be exact and all of them comes with IOS-XE 16.3.x. but I am having issues getting all switches to work with CWA and 802.1x.    I tried upgrading...

Hi everyone,I have a problem,in July I did an upgrade of my ISE from 1.2 to 1.3 and from 1.3 to 2.1 and finally from 2.1 to 2.2 and I applied your patch 3 of this last versión. All it work ed good after that I did upgrade, but one week after I saw th...

Hello,We are performing an EAP-Chaining ISE rollout and are running into the Windows 10 LSA issues where the computer name is encrypted and, as a result, fails authentication.What are the current Cisco recommendations to address this Windows 10 and C...

We have an ISE Guest cluster with PSNs having 2 interfaces. One interface receives the radius request and the other interface receives the web redirected traffic.   WLC----internal-network-----PSN---------------router   During failover testing we shu...

We have an ISE Guest cluster with PSNs having 2 interfaces. One interface receives the radius request and the other interface receives the web redirected traffic.   WLC----internal-network-----PSN---------------router   During failover testing we shu...

I'm in progress of deployment of an ISE solution for my customer and last week within couple hours we noted steep increase in Authentication Latency from 3-5ms to 500-600ms. First of all we checked config  logs and there was no changes to the ISE wit...

Hello   Lets assume that remote access VPN solution supports to have only machine authentication on vpn connection establishment. And machine authentication should be done via AD computer object attribute. Can we have ISE between tunnel head-end and ...

Hi, My customer has ISE 2.1 and the system certificate which used for EAP will be expired. The certificate is signed CA. Then, the end-point certificate also will be expired, as same as ISE system certificate. Actually, I'm not familiar with end-poin...

Hi friends I have a question about Subscription licenses in ISE. when a Subscription duration ended, the sessions that are active get terminated? best regards  

Hi All I hope you can help. I've searched for a bit but cannot find what the answer to this one.   Our current office environment is using 802.1x , Win 10 clients with Machine certs and a Windows NAC (PEAP) and all works fine.   We're going to be rol...