cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

1875
Views
0
Helpful
16
Replies
Highlighted
Enthusiast

ISE 1.1.1 High CPU usage

Has anyone had any problems with high CPU usage when ISE is under very minimal load, especially in the middle of the night?

At the moment there are max 10 wireless clients connected at any one time, but none overnight, yet the CPU sits around 90% all of the time.

The ISE in question is a VM, and has 4GB RAM, and 2 CPU's allocated. It is a stand alone system, and is only being used for wireless auth.

I haven't been able to find much in the way of being able to track which process is consuming CPU time, so it's hard to know exactly what is the cause, and where to look to resolve.

Everyone's tags (2)
16 REPLIES 16
Advocate

ISE 1.1.1 High CPU usage

Do you have the automatic updates configured for the client provisioning setting? Try disabling the automatic updates:

http://www.cisco.com/en/US/docs/security/ise/1.1.1/user_guide/ise_client_prov.html#wpxref43943

Thanks,

Tarik Admani
*Please rate helpful posts*

Tarik Admani
*Please rate helpful posts*
Enthusiast

ISE 1.1.1 High CPU usage

Automatic updates for the client provisioning is disabled, as is posture updates.

Advocate

ISE 1.1.1 High CPU usage

Do you have all the probes turned on? Can you disable any unused probes if they are enabled. I can try looking at a support bundle for you or you can have tac do this.

Thanks,

Tarik Admani

Tarik Admani
*Please rate helpful posts*
Enthusiast

ISE 1.1.1 High CPU usage

There are only three probes enabled at the moment, RADIUS, NMAP, and DNS.

Advocate

ISE 1.1.1 High CPU usage

I am curious to see if the nmap probe is causing this issue, can you see if disabling this will bring the cpu utilization down? If it does or doesnt I would suggest opening a tac case, they should be able to look into your virtual machine a little deeper.

Thanks,

Tarik Admani
*Please rate helpful posts*

Tarik Admani
*Please rate helpful posts*
Beginner

ISE 1.1.1 High CPU usage

Have you installed patch 2? One of the reasons for the issue of this patch was to address this issue and data base replication.

Cheers

Enthusiast

ISE 1.1.1 High CPU usage

Yep Patch 2 has been applied, but didn't have any effect on the issue. Also as I mentioned in the original post this is a stand alone system, so there wouldn't be any replication to other members.

Advocate

Re:ISE 1.1.1 High CPU usage

Is this a virtual machine if so is this local or san storage?

Sent from Cisco Technical Support Android App

Tarik Admani
*Please rate helpful posts*
Enthusiast

Re:ISE 1.1.1 High CPU usage

Yes it is a VM, and it is running on SAN storage, as the VM host is a blade server.

Advocate

Re:ISE 1.1.1 High CPU usage

Blade storage is that iscsi? Was it originally provisioned for 60gb and the remaining provisioned after?

Sent from Cisco Technical Support Android App

Tarik Admani
*Please rate helpful posts*
Enthusiast

Re:ISE 1.1.1 High CPU usage

It is a fibre channel SAN connectivity, and was provisioned from the start with 400GB storage.

cheers

Advocate

Re:ISE 1.1.1 High CPU usage

Your best bet is to open a tac case to have them take a look. Also you might want to try to rebuild the virtual machine from scratch and monitor again.

Thanks.

Sent from Cisco Technical Support Android App

Tarik Admani
*Please rate helpful posts*
Enthusiast

Re:ISE 1.1.1 High CPU usage

Yep have got a TAC case under way, but it is slow to work through. At the moment it looks like the profiler service is the cause, but it is yet to be confirmed.

cheers

Enthusiast

ISE 1.1.1 High CPU usage

Martyn, if you get a resolution please let us know. I'm having a similar issue. thanks!