Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

Labels

Forum Posts

Hello Experts   My customer wants to have user profile with command restrictions as mentioned in below table. Network device is Cisco Nexus 7000.   Basically customer wants to restrict some users to only certain configuration tasks. However we are no...

a_ccie by Cisco Employee
  • 1272 Views
  • 3 replies
  • 0 Helpful votes

Just wanted to get recommendation of the stable version of ISE is it 2.3 or 2.4? This is for a new deployment. I understand that 2.4 patch 1 is out. But I read in the forums (few months back) that BU was recommending 2.2 with the latest patch?    

Hi,Our ISE (2.0.1.130) default self signed server certificate has expired on both our primary and secondary ISE nodes. The Default self-signed server certificate is currently configured to be used by pxGrid and Portal services, but we don't use eithe...

Hi Experts,Our customer is doing test about API, they found the response from API did not show OU information as expected, but they could see OU information in live session log. My guess is it's relative with UTF-8. If you have same experience or any...

yongwli by Cisco Employee
  • 487 Views
  • 1 replies
  • 0 Helpful votes

Resolved! ISE Neverexpire

Hi Experts,Wanted to ask whether ISE supports neverexpire accounts for users?  Customer wants to have TACACS users to have neverexpire accounts.Thanks,Wendy

wchik by Cisco Employee
  • 823 Views
  • 3 replies
  • 2 Helpful votes

Hi,I am working on demo for ISE/firepower integration through PxGrid. Rely to firepower correlation function, when firepower detected a predefined intrusion event, then told ISE to quarantine the endpoint. I can create another correlation policy on f...

xili5 by Cisco Employee
  • 642 Views
  • 2 replies
  • 0 Helpful votes

HiI would like to order a tacacs license, but I have this question:What is the differente between "Device Admin License" and "legacy Device Administration"?, in wich case is valid use legacy?Is needed a license per ISE node?Thanks for your help.Regar...

Rss by Level 1
  • 1711 Views
  • 2 replies
  • 0 Helpful votes

Resolved! ISE NIC option

Hi experts We are designing for large SDA project which mainly provides wired/wireless user authentication and guest service ,  with 4 X 3595 in each DC.  I would like to know which interface option is more recommended as best practice. Suppose inte...

Is IBNS 2.0 supposed to be the most current reference on how to do CPL configuration for ISE deployments?  If so there needs to be some updates.  Currently the document uses this syntax to capture MAB and Dot1x failures:class-map type control subscri...

paul by Level 10
  • 920 Views
  • 3 replies
  • 0 Helpful votes