Showing results for 
Search instead for 
Did you mean: 

BYOD client provision failing with NDES role on Windows 2019

Level 3
Level 3

Hi all;

After conducting extensive investigations, during which I delved into various topics and related notes, deepening my understanding of the issue, I discovered that I couldn't implement SCEP with an External CA for BYOD scenarios due to a known bug that has already been reported by Cisco (CSCvx93146)

Several observations regarding this bug:

1. The bug report officially mentions that the affected release is ISE 2.7. However, I have encountered the same behavior in ISE 3.2 with patch 5.

2. Why does Cisco officially support Active Directory in Windows Server 2019 for ISE 3.2 despite this bug being reported several years ago?

3. Even though this problem was identified several years ago, why hasn't a workaround been developed?



2 Replies 2

Sherry Pang
Cisco Employee
Cisco Employee

Hi, I noticed that the bug (CSCvx93146) is still open, which means it hasn't been fixed yet. Could you please open a TAC case to get more information about this bug? The current workaround is to move the NDES role to either Windows Server 2016 or Windows Server 2012. Thank you very much!

Hi @Sherry Pang; currently I do not have this ability. Sorry for that...