Network Access Control

I have some data purging setup to automatically purge devices when they are inactive for so long.  I would like a report that will show me a list of statically profiled devices that are coming close to being purged or have not logged into the network...

Hi,We're implementing ISE posture with AnyConnect VPN. In the uknown state dACL we had to allow quite a few ports to our domain controllers to get Microsoft NLA (network location awareness) to work, which makes it a bit less secure. Still very secure...

For devices joining wired/wireless we can authenticate and authorize. My guess is that we could use Anyconnect NAM to deploy on builds they control but if someone were to try to deploy a guest OS with NAM they'd want to block it's access.

Dear community,I'm looking for ISE to remove sensitive information from the output of certain commands. For example, when issuing a show run command, I want to remove (or replace with *) all lines containing the word username and all lines containing...

Hello,I'm a beginner, I'm working on Cisco switch 2960s, and I need some advice about authentication methods to access the LAN (and not the switch).I have a set of vlans that can be divided into two subset according to the authentication methods.In t...

Hello,I've received a request from someone whose goal is to be able to set  "Disable user account after  X days if password was not changed" only for internal users with the password type "internal users".Customer also has other internal users with p...

Hi,is there any comparison list for the advatages of AC NAM versus the windows native client?there is no specific requirement i just would like to know the pro and the cons.thanks,

HI expertsMy customer use ISE posture module only (with anyconnect VPN client). They do not use the VPN at all. Once the posture is compliant, is there a way to minimize the popup window?I have seen the question before, but I cannot find a good answe...

Hi,I see the below logs in AC_ISE_Posture_Module, trust and signature validation with file_verify_win.c for the OESISCore.dll failed.Logs Analysis: See the attached!Using the following AC software and CM version;ISECompliance Version       3.6.10785....

Hi Team,In network where cisco old switches like 2950G is there , how can we deployed ISE.Even the new cisco ISE 2.3 doesnt need redirect, there are concerns with radius COA. Since they are not supporting Radius COA.So we tried SNMP COA, but even tha...

Current condition...User/endpoint not in guest endpoint database....connect's to Guest SSID....gets AUP page, accepts....gets auth sucess page...user/endpoint proceeds onto network...endpoint database purged daily at 6pm.....user comes back the next ...