Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1199
Views
0
Helpful
2
Replies

integration cisco ISE with tenable

Go to solution
paul87
Level 1
Level 1

‎12-12-2022 01:57 AM

hello
I followed the guide https://community.cisco.com/t5/security-knowledge-base/cisco-tc-nac-with-ise-and-tenable-security-center/ta-p/3647543 for the integration of cisco ISE with tenable, but I have an error message:

Errors:

ISE version is 3.1 ,tenable sc 5.2
at the ISE log level

2022-12-12 08:48:14.016 +00:00 0000001314 91019 INFO IRF: Vulnerability Assessment Scan Status, ConfigVersionId=298, Details=Number of endpoints queued for checking scan results: 0\, Number of endpoints queued for scan: 0 \, Number of endpoints for which the scan is in progress: 0, AdapterInstanceName=tenablesc-interval-trial, VendorName=Tenable Security Center, AdapterInstanceUuid=ffcd3f3d-d5f5-467d-ae3c-73377cc64295, ServiceName=Vulnerability Assessment Service, AcsInstance=ap -ise, Status=Adapter Statistics,
2022-12-12 08:48:29.492 +00:00 0000001315 70011 NOTICE System-Stats: ISE Counters, ConfigVersionId=298,

attached the logs  https://easyupload.io/kllzdr
thank you in advance.
Cordially

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
thomas
Cisco Employee
Cisco Employee

‎12-15-2022 03:17 PM - edited ‎12-15-2022 03:17 PM

Sorry, I do not see an actual error in your log. In fact it looks like an INFO log and the second one is only NOTICE which is only slightly higher than INFO but less than a WARNING. You also have not provided any details about the scenario, what you are expecting, what you think is wrong, if it was ever working, what changed, etc. See How to Ask The Community for Help 

Sorry, but I am not clicking on random file download URLs. You may attach plain text files directly to your post in the future if you like.

Please call Cisco or Tenable TAC so they may get the necessary details to troubleshoot this with you.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
thomas
Cisco Employee
Cisco Employee

‎12-15-2022 03:17 PM - edited ‎12-15-2022 03:17 PM

Sorry, I do not see an actual error in your log. In fact it looks like an INFO log and the second one is only NOTICE which is only slightly higher than INFO but less than a WARNING. You also have not provided any details about the scenario, what you are expecting, what you think is wrong, if it was ever working, what changed, etc. See How to Ask The Community for Help 

Sorry, but I am not clicking on random file download URLs. You may attach plain text files directly to your post in the future if you like.

Please call Cisco or Tenable TAC so they may get the necessary details to troubleshoot this with you.

0 Helpful

Go to solution
eric-stewart-13-ctr
Level 1
Level 1

‎05-01-2024 08:27 AM

I am also having an issue with Cisco ISE and TenableSC integration. In Cisco documentation it reads that i need to upload the system and root certificates from TenableSC. By using:

sudo scp /opt/sc/support/conf/TenableCA.crt [username]@[your ip address]:TenableCA.crt

sudo scp /opt/sc/support/conf/SecurityCenter.crt [username]@[your ip address]:SecurityCenter.crt

My questions are: Do I have to upload any Cisco ISE certificates into Tenable? What happens is the TenableCA certificate is expired? Is there a way to regenerate it? Are both needed?

I am setting up the Tenable adapter in the TC-NAC section and am getting this error code:

"Error connecting to Tenable Security Center, Error establishing https connection: Received fatal alert: handshake_failure"

I took a snip of a pcap i took of the traffic of the SSL/TLS handshake.

Any help or guidance is greatly appreciated.

 

ISE and Tenable.PNG
Preview file
11 KB
0 Helpful
Customers Also Viewed These Support Documents
Top