Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1604
Views
0
Helpful
3
Replies

Unable to login to secondary ise cli

engineer467
Level 1
Level 1

‎05-19-2020 03:26 AM

Hello,

 

Let me explain the issue and how it unfolded in steps-

1. 'Replication stopped' error seen on primary ise alarms, message says 'ISE Indexing Engine not running : Server=ise02'

2. This error will require a restart of ise application on secondary ise02.

3. Also there was NTP and DNS resolution issue also, so I first fixed that by logging into primary ise. I had to reset password for cli since the old one was expired.

4. NTP and DNS issue fixed.

5. Now when I tried to login to secondary ise cli to restart ise service, its not taking the old or new cli password. May be the password change event is not replicated.? What do i do now?

Thanks.

0 Helpful
3 Replies 3

poongarg
Cisco Employee
Cisco Employee

‎05-19-2020 06:56 AM

In such case do password recovery on the ISE node by booting the node with the same ISE version ISO image.

Follow below document:

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/200568-ISE-Password-Recovery-Mechanisms.html

 

 

0 Helpful

engineer467
Level 1
Level 1
In response to poongarg

‎05-19-2020 07:50 PM

Will it have any effect on the current node deployment?, since it is a secondary ISE.

0 Helpful

poongarg
Cisco Employee
Cisco Employee
In response to engineer467

‎05-19-2020 08:37 PM

No, It will not cause any issue with the current deployment.
0 Helpful
Customers Also Viewed These Support Documents