Network Access Control

Hi guys.We have some kinds of Ldap external bases that Cisco ISE can integrate.A few days ago a customer with this type of LDAP appeared ( Oracle Unified Directory ). In Cisco ISE 2.4 (last release), we have some "schemas" about Sun, Microsoft, Novel...

Hi all,I am working on an important POV but we are facing one issues with Extreme Networks switches which is the following :This is how the NAD is configured :We tried different devices, the session of those sessions are terminated in the Live Logs.T...

Hey Team,Is it possible for ISE to check the AV version of a server (TrendMicro), and automatically ensure that endpoints are on this version?I've seen this link:Cisco AnyConnect ISE Posture Windows Support Charts for Compliance Module v4.2.1538.0 - ...

Hello,I'm in the process of enabling cts manual on uplinks/downlinks for an environment that consists mainly of 3850s. I have a 6880 VSS pair and the question has now come up as to what needs to happen on the VSL link between the two switches in orde...

Hi ISE Experts.I have a customer that has two seperate ISE implementations. ISE (A) is for internal company wireless users, with access to the corporate AD user database. ISE (B) is partner managed ISE server, with access into the partner's corporate...

Hi,We are working on greenfield ISE project. We will deploy ISE 2.4 on 3595 appliances. 5+2 PSNs behind Load balancer at DC and same setup at DR. Admin and MnT on separate node with HA setup.Endpoint count is about 200K.Need suggestion on below point...

I need to confirm whether the following scenarios are supported or whether there are any potential issues in one. I don't believe so, but a sanity check would be greatly appreciated. Both scenarios are about avoiding the need to readdress F5 VIPs or ...

We have a customer that would like to authenticate headless endpoints  e.g printers , phones etc attached to  Juniper switch  with host lookup after FIPS is enabled. I currently have device profile configured for Juniper switch in ISE, and host looku...

Hi Community,I have a doubt over the below scenario how the policy flow works.If an Endpoint have AnyConnect Agent(4.5) installed with Posture module (4.5) and Compliance Module(3.6) and on ISE we have configured Client provisioning Policy and Postur...

Hello teamWe have a hotel customer and they want to install 1815W APs in every room (WLC will be 5520). In addition to this, they want the guests to be able to connect to their own AP in their own room only, using web auth. So the guests in room 101 ...

Is there a capability to give a switch port a default SGT assignment?  Similar to how we can have a default-acl on a switch port in closed mode.   Having trouble with a 50 line default-acl on a 2960 switch.  Would like to use SGT to reduces the size ...

Hi team,I have a question regarding ISE licensing. If a customer buy DNA Advantage he will get ISE licenses within his Smart Account portal.The customer does not want to use Smart Account and want to use Traditional licensing.What are the steps to ge...

Hey Team,Can ISE create custome signatures and if it can is there a limitation on how many customized signatures that can be created in ISE?Thank you.