Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
766
Views
0
Helpful
1
Replies

DACL issue on 2960s switches

taofaj4u
Level 1
Level 1

‎11-12-2018 06:35 AM - edited ‎03-11-2019 01:51 AM

Hello guys,

 

I ran into an issue while testing deny access on ISE. I blacklisted the MAC Address that was used during the test. The DACL "deny all traffic" which is explicit deny was downloaded to the switch and remain static on the switch. after the test, the MAC address was removed from the blacklist group and I expected that the system should have normal access but this was not the case as the DACL remains static on the interface and is being applied repeatedly to the machine anywhere it is connected.

 

Please help me out.

0 Helpful
1 Reply 1

hslai
Cisco Employee
Cisco Employee

‎12-22-2018 08:09 PM

Please use ISE LiveLogs and RADIUS detail reports to verify it matching a new authorization policy rule, sending an authorization profile, either without DACL or with a DACL of more permissions.

See also RADIUS MAC authentication host-mode mul...

0 Helpful
Customers Also Viewed These Support Documents