11-22-2019 01:02 PM
Team,
A customer of mine is doing validation testing for ISE 2.6 and came across FN 70357. https://www.cisco.com/c/en/us/support/docs/field-notices/703/fn70357.html
Based on this, it is clear that TLS 1.2 support is not available in ISE 2.6. When will a patch for this support be made available? My customer is currently using NAM 4.7 and clearly this will be an issue. Who can I work with to get a discussion going on this?
Anirudh
Solved! Go to Solution.
11-22-2019 05:51 PM
11-23-2019 06:16 AM
11-22-2019 05:51 PM
11-22-2019 06:29 PM
11-23-2019 05:49 AM
Thanks for the responses gentlemen.
OK. I should have been more specific by not stating "No ISE support for TLS 1.2" but "The ISE implementation of EAP-FAST does not support key generation in TLS 1.2.". However, here's where I came to that conclusion from. The way I read that is only for release 2.4 patch 5 and later. There was no mention of ISE 2.6. To me, and customers, it is confusing. Also, why is it mentioned on the 2.6 release notes if it is no longer an issue in release 2.6?
11-23-2019 06:16 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide