Hello Community-I have a purchase/migration question. The current ISE environment contains (2) VMs running ISE 1.2 in primary/secondary setup. The ISE deployment is currently licensed for 5000 Base licenses. There is no Smartnet/Software support c...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.
Forum Posts
Hi EveryoneI'm facing slightly the same behaviour where in Cisco ISE 2.3 Patch 2, I can see the endpoint in the Live session with the Wrong Switch IP and Port ID and the same is true under Context Visibility.What is even weird is that the interface (...
Resolved! ISE redirects with DNS Hijack?
We have a customer with old HP720 controllers that won’t be swapped for a few years and they need guest access. We cannot do anything like CWA. They’ve tested Forescout and like that they can use it on any of the old hardware as it just does a DNS hi...
Resolved! ISE new device detection
We are looking to identify any new devices that get plugged into the network, and receive notification of the event. Is this in the capabilities of ISE? I would think that possibly creating a new Profile, and finding an attribute that is common on al...
It seems an easy thing but I haven't been able to accomplish our objective: We created 2 Guest-Portals and 2 Sponsor-Portals, each one will be managed by 2 different administrators, of course each one is associated to 2 different SSIDs. Everything ...
Resolved! ISE Internal DataBase
Hi Team, I have some questions about ISE internal database:What is the database engine of ISE internal databases ?Is the content of ISE database encrypted ?Is it possible to connect to ISE database using a AD domain user ?What controls or functionali...
Resolved! Can you limit what devices are profiled?
I have a customer that wanted 1,000 Base licenses and 100 Plus licenses. They want to do profiling with the Plus licenses.Is there a way to specify what devices can be profiled or would the first 100 devicesbe profiled?Are there other features/reason...
We currently use 2 different certs: one for the EAP Authentication portion and one for the portals and admin access. The portals/admin is our wild card cert and the EAP Authentication cert is a “communications certificate”. We used this when we wer...
hello!has anyone managed to run the full "show running-config" command while in parser view?If so, please share any relevant information! Thank you in advance,Katerina
Guys,I'm a CCNA/CCNP R&S and started my CCNA Security. I was trying to deploy a parser view on one of my routers just to give someone limited access. One thing I noticed is that when I created the view and start putting in the allowed commands I ru...
How can I create an authorization policy that uses the requesting NAD as one of its conditions? Example I only want to apply certain authorization profile results to a subset of switches.Thanks!
Resolved! ISE 2.3 - Endpoint Rejected Status
I am implementing ISE 2.3 for the first time and monitored that upon reoccurring failed MAB authentication, ISE blocks the MAC into rejected state (see above image). Navigate to Context Visibility -> Endpoints to get the status of all the endpoin...
Hi,I have a customer who wants to use SafeNet for 2-factor authentication for dot1x.According to the SafeNet ISE integration guide for VPN, SafeNet is added as a Radius Server Token so I am guessing the same configuration will be applied for dot1x.1....
is there a way to calculate the bandwidth requirements for the load balancers to load balance the PSNs?
Hey, I'm trying to add TACACS+ authorization and authentication to my 2960x and my 4451. I followed the new configuration examples but when I try to log in my with ssh I get an authorization failure and the local database never kicks in so the only ...
