Activity in Security
ISE Apple-iphone guest authentication problem
problem with iPhone guest authentication with cisco ISE aswhile we use the Wifi Guest SSID the redirection page opens for a second thensuddenly closes, while we've android phones and IPads that authenticate normally.ISE 3.3 Patch 2 WLC 9800-Ldoes any...
Concurrent anyconnect sessione for fpr1140-asa in load balancing
Hello, I need a couple of firewall to manage up to 1500 concurrent anyconnect connections. the firewall need only to manage anyconnect remote access. may I use a couple of FPR1140-ASA or FPR-1150 in load balancing? I would not configure them in failo...
ISE URL redirection not work when the gateway for the vlan is on firew
Hi guys,I'm new to ISE and recently we are deploying ISE to production to authenticate users. The issue currently encountered is guest self-registration. For security reasons, the network where the guest is located is a separate area on the firewall,...
ISE 3.x TLS version
Dear Community, While ISE 3.x versions by default use TLS 1.2, so cannot find an option to enable TLS 1.3. To avoid the use of weak cipher of TLS 1.2, do you have any recommend /advice to keep it secure like protocols CBC, RC4,DES...or else? In case ...
FMC certificates
Hi I have been given a task to Install PKI Root / Issuing CA Cert Objects onto a new HA FMCv deployment. I have setup HA and preconfigured everything. I have been provided three certs one root and two .pfx files from the customer. labelled root.p7bfm...
Cisco1812J - Ikev2
Is Ikev2 available on Cisco1812J?
Upgrade to FMC 7.3 and got a health alert about Smart Licensing
Just upgraded the Lab FMC from 7.2.1 to 7.3 and now have a Smart License Monitor alert. Specifically, it says 'Smart Agent is not registered with Smart Licensing Cloud'. If I look at the Smart License Status on the FMC, it says Authorized and Regis...
License Needed for FMC on Hyper-V
Now that FMC is available for Hyper-V, I got ours running successfully, but it seems I need a license for it since it says it's not in compliance. Anyone have the SKU or name of what it should be?
Restoring a backup of an ISE 2.7 node to a 3.2 node is failing
I'm working on upgrading our ISE deployment from 2.7 to 3.2. We currently have a 4-node production deployment of ISE 2.7 - (2) PAN/MNT nodes and (2) PSNs. I've already installed ISE 3.2 onto new VMs and am at the point where I would like to restore t...
9800-40 Umbrella integration with VA forwarders
Is it possible currently to integrate Umbrella with a 9800 WLC using the VA forwarders and ISE in a way that a specific Umbrella policy can be applied for different user types connecting to the same SSID? Every integration document I can find shows t...
Integración de Umbrella 9800-40 con reenvíos VA
¿Es posible actualmente integrar Umbrella con un WLC 9800 utilizando los reenvíos VA e ISE de manera que se pueda aplicar una política Umbrella específica para diferentes tipos de usuarios que se conectan al mismo SSID? Todos los documentos de integr...
Secure Client 5, supplicant stops responding
I apologize for the length of this, but more detail seemed to make more sense. The summary is that I'm testing upgrading Secure Client to version 5.1.4.74 NAM, and I've found that the supplicant shuts off when a user whose session is authenticated wi...
Renew intermediate CA: potential impact on ISE deployment and EAP auth
Dear all In an ISE deployment with 4 ISE nodes (2 PAN and 2 PSN) we have qustions with Intermediate CA renewal Here is our PKI infrastructure: -MY-Root.CA (Root CA) MY1-Issuing-CA (Intermediate CA) (Exp date 26/05/2025 S/N: xxxxxxxx00002)MY2-Issuing-...
Using Local ISE users for 802.1X
I'm working for a client who wants 802.1x configured on their switchports. The environment is an airlocked one. Currently there is no a record to permit joining the server to AD. It looks like i'm going to have to setup local users for each person...
Cisco ASA ACL and NAT for RDP through subinterface allow any
Hello Team,Need help to create first ACL and NAT for our LAB testing . I have connected my subinterface with internet using PPPoE - I wanted to create ACL and NAT to allow everyone from internet to connect to the RDP on my inside host through my Subi...
| User | Helpful Count |
|---|---|
| 38 | |
| 37 | |
| 35 | |
| 30 | |
| 14 |
