Hi folks,
Just found something strange. we have distributed deployment: PAN and secondary PAN, and some PSNs.
we disabled internal CA service from PAN's GUI, but we noticed only 2nd PAN still has CA and EST running, the others all disabled.
Is this normal?
The version is 2.1 P3. 
1stPAN/admin# show application status ise
ISE PROCESS NAME STATE PROCESS ID
--------------------------------------------------------------------
Database Listener running 4833
Database Server running 115 PROCESSES
Application Server running 30994
Profiler Database running 7715
ISE Indexing Engine running 31714
AD Connector running 14034
M&T Session Database disabled
M&T Log Collector disabled
M&T Log Processor disabled
Certificate Authority Service disabled
EST Service disabled
SXP Engine Service disabled
TC-NAC Docker Service disabled
TC-NAC MongoDB Container disabled
TC-NAC RabbitMQ Container disabled
TC-NAC Core Engine Container disabled
VA Database disabled
VA Service disabled
pxGrid Infrastructure Service disabled
pxGrid Publisher Subscriber Service disabled
pxGrid Connection Manager disabled
pxGrid Controller disabled
PassiveID Service disabled
DHCP Server (dhcpd) disabled
DNS Server (named) disabled
2ndpan/admin# show application status ise
ISE PROCESS NAME STATE PROCESS ID
--------------------------------------------------------------------
Database Listener running 4773
Database Server running 122 PROCESSES
Application Server running 25942
Profiler Database running 21488
ISE Indexing Engine running 26438
AD Connector running 13464
M&T Session Database disabled
M&T Log Collector disabled
M&T Log Processor disabled
Certificate Authority Service running 31031
EST Service running 853
SXP Engine Service disabled
TC-NAC Docker Service disabled
TC-NAC MongoDB Container disabled
TC-NAC RabbitMQ Container disabled
TC-NAC Core Engine Container disabled
VA Database disabled
VA Service disabled
pxGrid Infrastructure Service disabled
pxGrid Publisher Subscriber Service disabled
pxGrid Connection Manager disabled
pxGrid Controller disabled
PassiveID Service disabled
DHCP Server (dhcpd) disabled
DNS Server (named) disabled
Accepted Solutions
