I have two Production Cisco ISE environment. Environment #1 is Cisco ISE version 3.1 patch 5 and Environment #2 is Cisco ISE version 3.0 patch 4. Both Cisco ISE environments are integrated with Microsoft Active Directory.
Today, I was informed by the Active Directory (AD) Administrators that they will implement CVE-2022-38023 and they will turn OFF RC4 on the AD servers.
Does it mean that communications between Cisco ISE and Microsoft ADs will be broken if they turn off RC4?
https://community.cisco.com/t5/network-access-control/cisco-ise-with-ad-cve-2022-38023-patch/m-p/4726688#M578449
https://bst.cisco.com/bugsearch/bug/CSCvo60450
https://bst.cisco.com/bugsearch/bug/CSCvo60450
It looks like Cisco ISE 3.0 and 3.1 are also impacted by this?
Any thoughts?
P.S.: I also opened a TAC case with cisco but the TAC engineer is pretty much clueless and he said that he would get back to me.
