Hi, We have a recently installed a WLC 5520, ISE 2.3 and Prime Infrastructure on UCS 220 Server. Now 802.1x is not supporting the devices like MI, Huawei , Samsung S8 (specifically Android version > 6 not connecting) , even Macbook latest versio...
i have installed sponsor guest portal and i applied it for wired user and i want to change vlan after guest registration as i added new vlan in authorization profile and new vlan applied well under interface but guest still keeping old ip address and...
My customer planned to migrate ACS 5.4 to ISE 2.2 . , so we created a config backup on the ACS 5.4 and load it in a new ACS 5.5 , started to migrate using the tool . The ACS is running as device administration.Authorization policy migration is ...
Have a scenario where Traditional ISE is deployed where ISE is doing 802.1x authentication for iphones and laptops on wireless. They would like to add the Passive-ID (PIC) functionality to their deployment using (WMI) to get identy info from their A...
Hi, A customer would like to be able to automate the testing the different use cases in their ISE deployment to validate that the configuration is valid and that they are protected. For example, validate that machine authentication is working as ex...
Hi everyone, I would like to know how to expand free disk space.Because I' m getting an error like '' Error: Need at least 21 GB free disk space in /opt before the upgrade can continue'' at CLI. You can see below what ı write at CLI and what ı gett...
Hi everyone, I would like to know how to expand free disk space.Because I' m getting an error like '' Error: Need at least 21 GB free disk space in /opt before the upgrade can continue'' at CLI. You can see below what ı write at CLI and what ı gett...
I have a WS-C2960CX-8PC-L running IOS 15.2(3)E2 with dot1.x, and MAB authentication schema enabled. Everything works fine for what concerns authentication and authorization while the accounting does have issues. Differently, than other Cisco switch...
Hi all, my customer has the following question: They would like to use TrustSec also on Branch Routers (ISR 4k actually) by using SGACLs. The branch router is aquiring IP-SGT mappings via SXP from ISE. Their question is now how to ensure the service ...
Hi Community, Currently running with two node deployment with ISE version 2.1 My SAML certificate got expired on my Secondary node, when I am trying to renew I am getting the error as ISE Node not Reachable. In order to renew From Secondary Node I ...
Hello The Default Portal Certificate Group uses the 1 year self-signed certificate by default, and this cert has long since expired. I have a customer who doesn't use portals at all. But the self signed cert has expired and they want to delete it...
In version prior to 2.4 ISE was able to utilize two sources of information to do the AD lookup for the AD profiler: DHCP hostname information obtained from device sensor/IP helper forwarding. FQDN obtained from reverse DNS lookup when DNS profiler...
A customer wants to implement high availability of sponsor portal with 2 PSNs. There is a separate interface for the portal and admin management traffic. They currently do not have a load balancer in place. One of the ideas put upon the table was t...
So I haven't been able to find anything googling. I keep just finding people who don't want the console to hit tacacs. However, I'm trying to get a normal setup of authentication Tacacs local. I've got things setup, and I can login perfectly fine w...
Hello, Checking the integration guide for AD and Cisco ( https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/ise_active_directory_integration/b_ISE_AD_integration_2x.html#reference_94BE6ABB85BC47C8AEC29EF8D286E6E4) there is table that indicates ...
