Solved: ise version update

bbb bbb · ‎05-17-2018

Hi everyone,

Looking for an update of firmware due to vulnerability information related to link below.

Cisco Identity Services Engine EAP TLS Certificate Denial of Service Vulnerability

based on our environment should we request to cisco or to our vendor for firmware upgrade of our ISE?

ise-server01/admin# show version

Cisco Application Deployment Engine OS Release: 3.0

ADE-OS Build Version: 3.0.2.218

ADE-OS System Architecture: x86_64

Hostname: ise-server01

Version information of installed applications

---------------------------------------------

Cisco Identity Services Engine

---------------------------------------------

Version : 2.2.0.470

Build Date : Thu Jan 26 05:52:23 2017

Install Date : Sat Jun 24 07:47:16 2017

ise-server01/admin#

thank you and regards,

hslai · ‎05-17-2018

Yes, Cisco Identity Services Engine EAP TLS Certificate Denial of Service Vulnerability shows the fix is available in ISE 2.2 Patch 5 and your deployment is ISE 2.2 without any patches per the "show version" output. Please apply the latest of ISE 2.2 Patch release, if possible, or at least Patch 5.

hslai · ‎05-17-2018

Yes, Cisco Identity Services Engine EAP TLS Certificate Denial of Service Vulnerability shows the fix is available in ISE 2.2 Patch 5 and your deployment is ISE 2.2 without any patches per the "show version" output. Please apply the latest of ISE 2.2 Patch release, if possible, or at least Patch 5.