12-29-2022 01:28 AM
Dear all,
I would like to ask some helps for my facing ise posture issue. Posture state is pending and pc and get only APIPA address. When i trouble shoot, i have DC_Unknown authorization profile by attaching DACL name = Test_RD1. That Test_RD1 have the following access-list as screenshot. When i delete ""Deny ip any any"" at Test_RD1, posture flow is completed and working fine. Actually, it was working fine before without removing ""Deny ip any any"" at DACL. I have no changes before facing this posture issue.
NOTE: user switch model >> C2960X and firmware version is 15.2(2)E6.
Could anyone pls suggest to get the cause? how related with it? Thanks much.
12-30-2022 03:16 PM
hello @journey jane , are you using a posture based redirection flow ? or redirection-less ?
01-06-2023 07:39 PM
Hello everyone,
Thanks alot. As i checked with TAC, they remove DACL and issue was resolved but that was not the cause and tac also cannot find out the cause as well. They just suggest not to put all of the postures and radius policy to a policy set and to do segregation for each.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide