Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
149
Views
0
Helpful
1
Replies

Cisco ISE change Compliant status to Pending status on wired (Dot1x)

oumodom
Level 1
Level 1

‎03-13-2025 08:47 PM

Dear Cisco ISE lover,

Currently, I perform lab for Windows 11 wired LAN with Dot1x authentication (EAP-TLS & MSCHAPv2) which used EAP-FAST and configure the postured. 
As we have 5 testing PCs, 2 PCs met issue changing Compliant to Pending status by it own. I try to find out the root cause but can not. 

The syndrome of issue, 2 PCs issue above firstly could authentication with Complaint status as normal. 
Unfortunately, within 5 to 7 days later, it changes to pending status and work around solution just click on "Scan Again" button, sometimes it works and sometimes not. And another workaround uninstall Secure Client agent and reinstall it is  working just only 1 month then it becomes the same issue. 

I try to change state 2 issue PCs to MAB, it never consists of this matter. just happen when perform on Dot1x only.
By checking with TAC, mentioned issue on switch port configuration. but this answer doesn't make sound.  

Is there the bug on Secure Client ISE Posture 5.1.2.42/ ISE Compliant Module 4.3.3335?  
   

0 Helpful
1 Reply 1

oumodom
Level 1
Level 1

‎03-13-2025 08:50 PM

Hello @Leo Laohoo 

Any idea on this issue? 

0 Helpful
Customers Also Viewed These Support Documents