Network Access Control

Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

Labels

Forum Posts

Do we have a way to support a customer that is currently using DAP on ASA with ISE?The customer is using DAP to assign "Basic VPN Connectivity" ACL based on LDAP group, then provide additional access with a network ACL above and beyond if they are pa...

gjw_csco by Cisco Employee
  • 1942 Views
  • 2 replies
  • 0 Helpful votes

Team, I have an ISE use case where my customer would like to correlate the guest who is self-registering, to a sponsor group in an  area of the country, or what my customer  refer to as a Region.  For example:Region 1 - DC , OR , IdahoRegion 2 - AZ, ...

jideji by Cisco Employee
  • 597 Views
  • 3 replies
  • 0 Helpful votes

My customer has a few different requirements for reports to be generated within their ISE deployment.We need a report that has a list of all endpoints that failed posture and for what reason. We have been able to generate one that only contains the u...

rwehe by Cisco Employee
  • 1249 Views
  • 1 replies
  • 0 Helpful votes

Hi All,Is it possible to create a posture check for a specific build of Windows 10? For example, is it possible to create policies to check if a user is using Windows 10 initial Revision followed by the following revisions:1709170316071511Thanks for ...

joarcidi by Cisco Employee
  • 511 Views
  • 2 replies
  • 0 Helpful votes

Resolved! ISE resource usage

I have a customer who is asking about the "resources" that ISE uses in a server (memory, drive, CPU) and why a 'larger' server is needed for ISE 2.4.  Can anyone detail the 'behind the scenes' resource allocation that ISE needs/uses to justify the ne...

nloverin by Cisco Employee
  • 3020 Views
  • 6 replies
  • 2 Helpful votes

Hi Team,Customer running ISE2.4 with traditional base and plus license. Polices are configured for MAB  and dot1x. Profiling also enabled and devices are getting profiled. It's an upgrade from 2.2.Policies have EAP-TLS, PEAP , AD groups and Endpoint ...

Hey Guys, How can I monitor denied traffic real-time? With "show conn", it just shows the accepted sessions, but I want to know if there is a source IP that sends traffic (even through IPsec tunnel) and get denied. Packet tracer is not handling live ...

Hey guys,In the new ISE 2.4 Install guide, it discusses the new OVA resource requirements:eval:16G RAM, 2300Mhz CPUsmall: 16G RAM, 12000Mhz CPU --> old 3415/3515?med: 64G RAM, 16000Mhz CPU --> old 3495/3595?large: 256G RAM, 16000Mhz CPU - what is thi...

nloverin by Cisco Employee
  • 583 Views
  • 2 replies
  • 0 Helpful votes