03-09-2017 01:28 PM
We are running ISE 2.1 and when PAN goes down or is in a failover stage new endpoints could not be profiled.
The same has been mentioned here Cisco Identity Services Engine Administrator Guide, Release 2.1 - Set Up Cisco ISE in a Distributed Environment [Cisco …
As far as I remember in ISE 1.4 profiling worked when PAN went down.
Any particular reason this behavior changed in 2.1 ?
Solved! Go to Solution.
03-14-2017 03:23 AM
The documentation was updated for ISE 2.0 following a more extensive review of different scenarios. Expectation is that the behavior is equal or better in new versions. I worked with the doc team to deliver this info and some of the results were impacted due to a defect that should now be resolved:
CSCuw51376 | DHCP Attributes Not acknowledged after PSN Ownership Change |
03-09-2017 03:37 PM
No changes since 1.4 regarding the profiling and PAN being unavailable. Profiling new endpoint requires writable access to the database, which requires active primary PAN being available. This has been the case for all versions of ISE.
03-10-2017 10:17 AM
Hosuk,
The documentation suggests otherwise. You might want to put in a change request for the documentation if that is the case.
The PDF file shows the same:
03-14-2017 03:23 AM
The documentation was updated for ISE 2.0 following a more extensive review of different scenarios. Expectation is that the behavior is equal or better in new versions. I worked with the doc team to deliver this info and some of the results were impacted due to a defect that should now be resolved:
CSCuw51376 | DHCP Attributes Not acknowledged after PSN Ownership Change |
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide