Hi Team, Is there a way the guest can be allowed to access depending on the sponsor's rights? Example: Guest self-register, then the approval is in an active directory group that has the right to create weekly accessCan I assign the self-register g...
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
Resolved! SNMP MIB files for ISE 2.4
Hi,Customer is looking for SNMP MIB files for ISE 2.4. I am not able to find out same.Can you help me to get it?Regards,D.M.Gore
Hi all,We have a medium deployment with PAN+MNT personas sharing the same appliance. If I want to restart the PPAN due to resource utilization. Can I promote my SPAN to the new PPAN while the "PAN Auto Failover" enabled, and reload the original PPAN?...
We are running a switch in FIPS mode with RADSEC configured. When the RADSEC client on the switch attempts to establish a connection to the RADIUS server over 2083/tcp, it offers only TLS_RSA_WITH_AES_128_CBC_SHA, TLS_EMPTY_RENEGOTIATION_INFO_SCSV a...
According to this bug, it stated: When user authentication initiates from ISE, ISE will connect and send the encryption types that are supported (RC4, AES128, and AES256). This enhancement is for AD tuning to only send AES 256This is exactly what I ...
Resolved! ISE Profiles Best Practice
Hi,Is it best practice to create a seperate profile for each authentication and authorisation that you do? For example I'm first authenticating the PC and pushing a DACL to the switch to only allow AD access. Would I also create the user profile for ...
Have anyone else noticed that all the new profiling policies provided by Cisco are configured to create matching Identity Group ? The explanation from Cisco TAC is that this is how it is supposed to be, I just find it odd that suddenly all these d...
Hi there,I wonder if there is way to export the configuration of the portals in a structured file, hopefully XML.Does anyone now it?Thx, Gio
I am running ISE 3.2 patch 4 and I am getting flooded with these messages:Details :Misconfigured Supplicant Detected with EndpointID=D4:BE:D9:9A:24:7F from user=host/gamble.mycompany.comDescription :ISE has detected mis-configured supplicant on the n...
Hello team Please help with understanding to choose correct virtual VM machines for network with 20,000 active concurrent session. I think about image 3655 with 4 nodes: PAN+MNT X 2 PSN X 2 what do you think? thanks in advance. regards Michael
We upgrade the ise box from 2.4 to 2.7 version, and we found one error like "secondary admin node is added to the deployment, please register smart licensing" We tried update, but it didnt fixed. As a lat step we have de-registered the smart license ...
Hi ,We apply same config to another switch and it is working.Its gives me below error. Kindly let me know what the error is it is.SW-9200-KP-OOB-UCS(config)# aaa accounting default group PCCU-ISEError: AAA authorization failed AAA_AUTHOR_STATUS_METH...
Resolved! ISE Self Registered Guest Type
If we choose Self Registered Guest Type with Guest Approval , are we able to assign "Guest Type" profile to registered guest manually During Approval Process ? The idea is every Guest may need different duration of access. Some may 1 day, some may n...
Hi Team,Below are the observations crossed while testing the backupScenario1:Whenever Primary nodes get reboot/failover/Switchover[Promote primary to secondary and Vice versa Secondary node will mark to Primary] - Observed that automatic backup is g...
Hi Team,Observed the below error at some point, but not able to reproducible.
