Dumb L2 only switch hanging off of L3OOB managed switch
I have an issue where I have a dumb layer2 switch (netgear and Linksys) hanging off of a 3550. Devices on these ports loop during the authentication process, or don't even go through it, the simple get left in the AUTH VLAN. I do not have any port security setting turned on on these ports, and have all of the IP Phones and Printers in the filtered devices list. Any ideas why this may occur?
Re: Dumb L2 only switch hanging off of L3OOB managed switch
Is it that you only have IP phones and the printers that are in the filtered list on that unmanaged switch? If that is the case this should work fine.
If you have PCs as well that are controlled by NAC then it will cause the port on the 3550 to go into the unauthenticated VLAN where it will authenticate and then switch to the access VLAN. If you have more than one PC connected then it will cause a MAC Notification to be sent to the NAS causing the port to go into the unauthenticated VLAN once again.
Do you have the "remove other out-of-band online users on the switch port when a new user is detected on the same port" enabled? (OOB Management --> Profiles --> Port --> Your switch profile). If you do, uncheck it and try again.
This is to address those customers coming to ISE from ACS or new to ISE that need a password change portal (UCP)
What are the licensing requirements for this solution?
My Devices - For using the password change with My Devices you need plus licenses as ...
In this paper we will document the configuration and operation of an integrated solution that includes identity management, firewall, cloud-based management, and cloud-based logging.
We will use the following Cisco products:
These days everything is in the cloud. We all know that Cisco Firepower Threat Defense (FTD) is a unified software image, which includes the Cisco ASA features and FirePOWER Services. Using Cisco Defense Orchestrator (CDO), you can manage physical or virt...
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that provides a simple, consistent, and highly secure way of managing security policies on all your ASA devices. CDO helps you optimize your ASA environment by identifying problems wi...