ā01-19-2025 01:35 AM
i was have 2 node
ISE-1 << Prim(PAN) Prim (MNT)
ISE-2 << SEC(PAN) SEC(MNT)
after upgrade some thing happaned to the ISE-1 MNT and after talk with cisco we descided to Re-image the ISE-1
now ISE-2 is standalone
and ISE-1 standalone with no configuration yet only the licince
i need to know spefically what i will do to back the ISE-1 to the deployment please i need the step ....
Solved! Go to Solution.
ā01-19-2025 09:43 AM
1st Restore your CONFIG and OPER backup to ISE-1.
In Administration > System > Repository ... create your Repository
In Administration > System > Backup & Restore > Select the Repository, choose your Backup and click Restore.
2nd Change the ISE-1 Role from Standalone to Primary
In Administration > System > Deployment > select the Node > click Make Primary:
3rd Register the ISE-2 to the new Cluster.
In Administration > System > Deployment > click Register and enter the ISE-2 Data:
Note: what is your ISE version & patch ?
Hope this helps !!!
ā01-19-2025 06:50 PM - edited ā01-19-2025 06:52 PM
ā01-20-2025 07:32 AM
ā01-19-2025 03:21 AM
@saeedabdelhalimhamada wrote : >...and after talk with cisco we decided to Re-image the ISE-1
You can use your contact with Cisco to ask for the needed steps too , for adding the (a) node to the deployment. The benefit being that you get an authoritative response,
M.
ā01-19-2025 09:43 AM
1st Restore your CONFIG and OPER backup to ISE-1.
In Administration > System > Repository ... create your Repository
In Administration > System > Backup & Restore > Select the Repository, choose your Backup and click Restore.
2nd Change the ISE-1 Role from Standalone to Primary
In Administration > System > Deployment > select the Node > click Make Primary:
3rd Register the ISE-2 to the new Cluster.
In Administration > System > Deployment > click Register and enter the ISE-2 Data:
Note: what is your ISE version & patch ?
Hope this helps !!!
ā01-19-2025 06:50 PM - edited ā01-19-2025 06:52 PM
ā01-20-2025 03:06 AM
Thanks @ammahend @Marcelo Morais all work done , but i have an iusse , i used certificate from Private CA and install the Root CA to ISE-1 and ISE-2 and i made Certificate Signing Requests for Both ise and this certifcate i used it form Admin , Auth etc as i show in the pic , but the massage service each one use selfsigned certifacte now i have problem with Queue Link Error so what is your suggestion to solve this problem ??
ā01-20-2025 07:32 AM
ā01-20-2025 11:41 PM
Thanks @Marcelo Morais
i just rege the ISE ROOT CA and it`s working fine ā„
ā01-21-2025 05:43 AM
great news !!! I'm glad I could help !!!
Note: I hope you enjoyed the article: ISE - Queue Link Error, if you have any suggestion for improvement, just let me know !!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide