Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
431
Views
0
Helpful
3
Replies

ISE - Computer name change gets computer disconnected

Melghafri
Level 1
Level 1

‎10-19-2016 12:57 AM - edited ‎03-11-2019 12:09 AM

Hi,

Anyone can explain what happens here?

We are running ISE with EAP-FAST machine&user authentication.

while machine A is connected to uncontrolled port (no dot1x) and machine B is connected to controlled port (dot1x) and then we change the computer name the following will happen:

-machine A will become busy for a while ... and then a pop-up will ask to reboot.... before computer gets rebooted if we search in AD for the new computer name we will find it.

-machine B will become busy for a while ... and then a pop-up will ask to reboot... before computer gets rebooted if we search in AD for the new computer name we will NOT find it.

This only means that ISE/AnyConnect are doing something BEFORE the reboot.

Does anybody know what happens?

Labels:
0 Helpful
3 Replies 3

nspasov
Cisco Employee
Cisco Employee

‎10-20-2016 06:31 PM

Hi there, quick question: Are you running your ports in closed or Low-Impact mode?

Thank you for rating helpful posts!

0 Helpful

Melghafri
Level 1
Level 1
In response to nspasov

‎10-20-2016 09:12 PM

Thanks Neno

Low-impact mode

0 Helpful

nspasov
Cisco Employee
Cisco Employee
In response to Melghafri

‎10-21-2016 11:13 AM

Hmm, if your pre-auth ACL is configured properly so the machine can talk to AD then this should work fine. If your ACL is fine I would suggest you check with TAC...unless someone else has an idea here. 

Thank you for rating helpful posts!

0 Helpful
Customers Also Viewed These Support Documents