http://www.cisco.com/en/US/ts/fn/636/fn63635.html
I have an ISE system which was affected by this issue; after a save the auth rules were in a jumble.
Does a simple reorder and save sort everything out, or is TAC intervention actually required?
As a quick aside, I have done a quick look-through on the forums, and it mentions TAC helping to reorder rules. Since I know what the rules should be at, do I need them (are they doing something more?) or am I good on my own?
TIA