Solved: Re: integration cisco ISE with tenable

paul87 · ‎12-12-2022

hello
I followed the guide https://community.cisco.com/t5/security-knowledge-base/cisco-tc-nac-with-ise-and-tenable-security-center/ta-p/3647543 for the integration of cisco ISE with tenable, but I have an error message:

Errors:

ISE version is 3.1 ,tenable sc 5.2
at the ISE log level

2022-12-12 08:48:14.016 +00:00 0000001314 91019 INFO IRF: Vulnerability Assessment Scan Status, ConfigVersionId=298, Details=Number of endpoints queued for checking scan results: 0\, Number of endpoints queued for scan: 0 \, Number of endpoints for which the scan is in progress: 0, AdapterInstanceName=tenablesc-interval-trial, VendorName=Tenable Security Center, AdapterInstanceUuid=ffcd3f3d-d5f5-467d-ae3c-73377cc64295, ServiceName=Vulnerability Assessment Service, AcsInstance=ap -ise, Status=Adapter Statistics,
2022-12-12 08:48:29.492 +00:00 0000001315 70011 NOTICE System-Stats: ISE Counters, ConfigVersionId=298,

attached the logs https://easyupload.io/kllzdr
thank you in advance.
Cordially

thomas · ‎12-15-2022

Sorry, I do not see an actual error in your log. In fact it looks like an INFO log and the second one is only NOTICE which is only slightly higher than INFO but less than a WARNING. You also have not provided any details about the scenario, what you are expecting, what you think is wrong, if it was ever working, what changed, etc. See How to Ask The Community for Help

Sorry, but I am not clicking on random file download URLs. You may attach plain text files directly to your post in the future if you like.

Please call Cisco or Tenable TAC so they may get the necessary details to troubleshoot this with you.

View solution in original post

thomas · ‎12-15-2022

Sorry, I do not see an actual error in your log. In fact it looks like an INFO log and the second one is only NOTICE which is only slightly higher than INFO but less than a WARNING. You also have not provided any details about the scenario, what you are expecting, what you think is wrong, if it was ever working, what changed, etc. See How to Ask The Community for Help

Sorry, but I am not clicking on random file download URLs. You may attach plain text files directly to your post in the future if you like.

Please call Cisco or Tenable TAC so they may get the necessary details to troubleshoot this with you.

eric-stewart-13-ctr · ‎05-01-2024

I am also having an issue with Cisco ISE and TenableSC integration. In Cisco documentation it reads that i need to upload the system and root certificates from TenableSC. By using:

sudo scp /opt/sc/support/conf/TenableCA.crt [username]@[your ip address]:TenableCA.crt

sudo scp /opt/sc/support/conf/SecurityCenter.crt [username]@[your ip address]:SecurityCenter.crt

My questions are: Do I have to upload any Cisco ISE certificates into Tenable? What happens is the TenableCA certificate is expired? Is there a way to regenerate it? Are both needed?

I am setting up the Tenable adapter in the TC-NAC section and am getting this error code:

"Error connecting to Tenable Security Center, Error establishing https connection: Received fatal alert: handshake_failure"

I took a snip of a pcap i took of the traffic of the SSL/TLS handshake.

Any help or guidance is greatly appreciated.