Hi Jason,

Thanks, So I should stop looking for it.

I did read this on Cisco docs and other blogs as well.

Regards,

B

 - And it shouldn't be , if you are using open-source (Linux) as the underlying carrier-engine for ISE , then let users benefit from this too (open-source mindfulness) , when there are special  problems,

M.

- Cute, that seems more like a 1000-year action plan,,,,,! :-)

 M.

 - It >is<  a technical issue; in the sense that an ISE customer shouldn't depend on a CISCO TAC case with long latency , when just needing to clear a ./tmp or /var/tmp on ISE which is usually production critical, But I don't want to end up in  a war-style discussion either. Thanks for your advises.

M.

The guys on the Community forum know that I have ranted about this before but I am glad I am not the only one.  And as Jason points out all the time, the PM's are not on these forums (which I think is a mistake and a shame).  Other Cisco products allow customers to get root access and it's not a technical advantage to block users from root access.  It's a CYA strategy and probably resulted from one nasty incident where one customer did something stupid and ruined it for all of us forever more.

The other fact is that if you get hold of this root patch, you can play around with it all you want - the cert lasts quite long actually.  So that in itself is a weak deterrent.

I have submitted numerous enhancements via the feedback form but I don't know where it ends up. It would be nice to see how our suggestions are tracking. 

If you can stop ISE VM, just mount ISE disks under another Linux VM where you have all the rights and do the cleanup. Also, having access to the ISE disks will give you the option to add an account with shell access and you can add it to sudoers. End of your stress...