11-05-2021 02:40 AM
After I integrated ISE & Stealthwatch . I can't see any users on Stealthwatch>Monitor>USERS ,also I can't apply ANC to the host.
I follow the guidance on this post
Can someone give me some idea on how to solve this problem?
11-05-2021 03:04 AM
@LuoJunZhi4816 it looks possibly like the integration between the SMC and ISE is not working correctly, as you don't have the username, MAC address nor ANC policy information in the SMC output.
Have you approved the stealthwatch SMC client in ISE (under the pxgrid services)?
Have you used the correct certificates with server and client EKU (as per instructions in the guides)?
11-15-2021 07:37 PM
Hi Rob Ingram,
Thank you for your reply.
Last week I rebuild my SMC and ISE ,but it shows the same error messages.
Should I need to take my ISE as a Radius Server, so that I could enable to use the ANC policy?
We already had our own Microsoft AD server,and every PCs in the office has joined into this domain.
So if possible I don't want to use another identity service.
I want to build the same environment just like what she did in the video.
11-08-2021 08:34 PM
Besides what Rob Ingram mentioned, check the integration guides specific to Cisco SNA releases at Cisco Secure Network Analytics > Configuration Guides
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide