Solved: ISE Node deregistration issue

craddockchristopher · ‎09-25-2024

Community,

I was having some communications issues with one of my ISE nodes in my deployment. I went ahead and deregistered the node from the PAN. The PAN has processed the deregistration and no longer sees the node (a PSN). However, the PSN still believe it is part of the deployment, so its been orphaned in a way. How do I get the PSN back into a standalone state?

These are physical appliances (3755 PAN and 3715 PSN).

Thank you.

PSM · ‎09-25-2024

Reset config of the application using CLI.

application reset-config ise

Then re register the node in deployment.

View solution in original post

MHM Cisco World · ‎09-25-2024

https://m.youtube.com/watch?v=iXKDleU9-3Q

Check this video

MHM

PSM · ‎09-25-2024

Reset config of the application using CLI.

application reset-config ise

Then re register the node in deployment.

craddockchristopher · ‎09-25-2024

Thank you. Ill try that and respond momentarily.

Aref Alsouqi · ‎09-25-2024

When you run the "application reset-config ise" command you can decide if you want to wipe our all the configs (except for the network settings) or if you want to keep the certificates.

Another thing you could do I think would be to change the deregistered PSN persona to administration and then change it back to PSN.

Aref Alsouqi · ‎09-25-2024

Seems if you try to connect to that PSN via this URL and you use the admin credentials to login then you don't have to use the reset command, I never tried it though:

https://< PSN IP address >/deployment-rpc/deregister-node