08-25-2024 03:09 AM
Hey guys,
i have 2 ISE nodes with all personas, one is primary PAN and the other is secondary. When I did the integartion with DNA i forgot to but the second node Certificate to be trust by primary so DNA connot trust the secondary node.
my question is, if i removed the integration between ISE and DNA will the configration on ISE be removed ?
what is the best practice ?
08-25-2024 05:01 AM
08-25-2024 03:29 PM
The procedure would be similar to this example:
Reintegrate Cisco ISE with Cisco Catalyst Center
Catalyst Center has no control over ISE Policy Set configuration. For Group Based Policy (TrustSec), Cat Center pushes configuration to ISE (Security Groups, SGACLs, TrustSec Policies) via REST API, but those configurations will not be deleted from ISE when ISE is removed from CatC. When reintegrated with ISE, CatC will pull that GBP config from ISE again.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide