Showing results for 
Search instead for 
Did you mean: 

Cisco ISE 2.2 - Most recent stable patch release


Hello, I upgraded my ISE deployment to ISE 2.2 patch 11. I see that ISE 2.2 patch 11 has since been deferred.


What does Cisco recommend as the stable ISE 2.2 Patch release? Should we wait for Patch 12 or roll back to 9 or 10? 


SEVT on Oct 7-13 recommended ISE 2.2 Patch 9. Just wondering if this is still the Cisco recommended patch release?







Accepted Solutions

My TAC case on this issue reported it is planned to be fixed in the Patch 12 release. 

View solution in original post


Cory Peterson

In the very near future ISE 2.4 Patch 4 will be the recommended version of ISE. 


I would expect this in the next couple weeks.


It's a fair question, and one that's becoming increasingly difficult to answer. I've shared some feedback with a few folks at Cisco regarding patches lately:

    • New patches consistently break existing functionality, or introduce new bugs. Examples

And now, patch 11 has been recalled. In my opinion, more rigor needs to be applied to patching. I'm very much a fan of Continuous Improvement, and rapid releases... but this methodology, when applied appropriately, should not introduce the number of flaws we've seen lately with these patches.

This often leaves us in a difficult position when TAC is advising us to patch ISE before further troubleshooting can occur, but the patch they would like us to move to will knowingly introduce additional issues.

I won't argue with you on that, it's painful. For what it's worth, 2.4 has been pretty stable for us lately, we had some early issues with high impact, but we were able to have hot fixes generated. All of the main issues we were facing are now addressed in patch 4. It shows some promise of increased software quality. Too many regressions and recalled patches in the past year.