Solved: Re: Cisco ISE Radius Live log is empty - Page 2

ccna_security · ‎04-13-2020

Dear all. i have created lab envirement on eve-ng and trying to learn cisco ise. i configured switch as below

aaa new-model
!
!
aaa group server radius ISE
server name ISE01
ip radius source-interface Vlan1
!
aaa authentication dot1x default group ISE
aaa authorization network default group ISE
aaa accounting update newinfo periodic 2880

!

interface vlan 1

ip address 10.10.10.100 255.255.255.0

!

radius server ISE01

address ipv4 10.10.10.20 auth-port 1812 acct-port 1813

key cisco

!

Then tested using command shown below. But unfortunatelly nothing shown on Radius Live logs. i choose network device as default and enabled it with Radius key. Could you please instruct me to configure switch that cause logs not to be shown on radius live logs?

Switch#test aaa group radius test-user test-password new-code
User rejected

poongarg · ‎04-16-2020

CPU allocation is fine for evaluation mode but the minimum memory need to be 16 GB to prevent this issue. Alternatively you can use below ova image for your testing directly instead of allocating the resources manually.

ISE-2.6.0.156-virtual-SNS3615-SNS3655-200.ova

https://software.cisco.com/download/home/283801620/type/283802505/release/2.6.0

ccna_security · ‎04-16-2020

That is the one i have installed. If i increased ram to 16 gb dont you think other virtual machines would work slowly? I have computer with 16 gb ram. i use windows 7, windows server CA, and Cisco ISE. do you think by increasing ISE's ram wouldnt affect other machines rapidity?

poongarg · ‎04-16-2020

In such case, install ISE 2.2 evaluation ova (ISE-2.2.0.470-eval.ova) which have 8 GB RAM reserved. This ova is for evaluating guest access and basic access policy flow. Install latest patch 16 on it.

ccna_security · ‎04-16-2020

thanks poongard. i wiil install and test it.