Activity in Security
TEAP Failed User
Hi, Our customer is using 2xCisco ISE 3.4 P3 integrated with AD. They have two domains xyz.com and aaa.com. Cisco ISE is configured at the domain xyz.com We are using TEAP for dot1x and the computer authentication is working. Only the user authentica...
SNA redundant site and HA
I need to use on-prem SAL to increase FMC events retention on SNA and need to provide high availability between two data centers for my deployment. i also have have cisco telemetry broker. Would it be the same if 1- i configured ftd syslog to point t...
ISE Administration Node Replacement
Morning Cisco Forums,I'm looking for some guidance on the process of replacing ISE administration nodes, in a 4 node cluster. In our current environment, we're running ISE version 3.4p4, and have a primary/secondary administration node, and 2 policy...
CISCO-IPSEC-FLOW-MONITOR-MIB: cipSecSAtunEncryptAlgo returns undefined
Hi @All I am trying to monitor IPSec VPN tunnels on my Cisco ASA using SNMP and the CISCO-IPSEC-FLOW-MONITOR-MIB.I am running into a discrepancy with the cipSecSAtunEncryptAlgo object (OID: 1.3.6.1.4.1.9.9.171.1.2.3.1.12).According to the MIB definit...
Devices falling off the network - Can restore them by readding to ISE
Hi,We have a strange issue where devices that are in an identity group on ISE which in turn get authorised and download a DACL are falling off the network at seemingly random times.Example Switchport:interface GigabitEthernet2/0/23description "Exampl...
Single ISE guest portal and multiple global PSNs
We have a global deployment of multiples PSNs ( 2 US-WEST, 2 US-EAST, 2 EU and 2 APAC). Currently we have a single guest hotspot portal with a single URL (guest.portal.XXXXX.com). Each site has a local FortiGate which acts as the DHCP server and a lo...
ISE failed to join Active Directory: Error_Access_Denied, How to Fix?
Hello, I am trying to join ISE 3.4 VM with Active Directory but Its getting failed and I am getting below logs on ISE GUI. Error Description: Access is deniedSupport Details...Error Name: ERROR_ACCESS_DENIEDError Code: 5 Detailed Log:10:49:39 Jo...
Is it possible to export the All context visibility information
Hi - Is it possible to export the All context visibility information from ISE ?
Secure Client quits without error message
I just installed Secure Client on my new Windows 11 desktop. When I click the "Connect" button, the UI quits immediately, before any login page pops up, without any error message. This issue persists after reinstall or reboot.UI versions:AnyConnect V...
FMC Object Management - added network objects not seen
Running FMC 6.2.3.3 with multiple domains with FTD 2100. Added network objects which are visible when scrolling through the object pages. But are not seen when using the search filter and entering the ip address or name. Nor are the new objects sh...
Resolved! Management interface for logical FTD on Firepower 4100
Hi, I'll shortly have to deploy a physical firepower of the 4100 family "4115". I know that the first MGMT interface showing up is for chassis FXOS purpuses. In Cisco videos I've seen that the management interface used for FTD "logical instance" is t...
Support contact network already exists
Can someone from the opendns team please contact me? I'm getting the "this network already exists" error and I need the IP cleared. There seems to be no other way to contact support. Thank you.
Anyone Actually Using Cisco ISE Properly for Zero Trust?
I keep hearing about “Zero Trust with ISE,” but in every environment I test, it’s half-baked — VLAN hopping still possible, NAC bypasses everywhere, and ISE policies left at defaults. Has anyone seen a real-world, properly implemented ISE deployment ...
Resolved! Any experience with FMC/FTD 7.7.10.X release ? is it stable?
Hi community, I would like to ask for your opinion/experience with 7.7.10.x releases Have you experienced any disruption, serious problem with these versions? in particular with S2S or RAVPN services. Any comment or opinion will be welcome. Thank ...
FMC IP change – FTD already onboarded, registration key not available
Hello Community, We are planning to change the FMC IP.The FTD is already onboarded and in sync with FMC (production environment), so factory reset or config loss is not an option. To update FMC IP on FTD, we need the registration key so is there any ...
| User | Helpful Count |
|---|---|
| 42 | |
| 24 | |
| 19 | |
| 6 | |
| 6 |
