Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
In a distributed ISE deployment with regional intermediate CA, I am getting failed authentication due to " EAP-TLS failed SSL/TLS handshake because of an unknown CA in the client certificates chain". Client device have only one client certificate is...
A quick fix is to enable "IP device tracking". BTW, how are this Change of VLAN performed, CoA ?? and if CoA then reauth or port-bounce?Port-bounce should also resolve this multiple mac entiresThanks
Based on personal experience, I would say make sure the domain-name for both VM is the same. For examplevm1.ad.abc.com and vm2.dir.abc.com (VM1 & VM2 as hostnames and ad.abc.com & dir.abc.com as domain names) didn't sync up during my testing with I...
In ACS try sending following attributes as part of authorization for uses who can telnet/ssh to the router/switch.cisco-avpair = "shell:priv-lvl=15"Thanks
Thanks Jan for reply. And short answer is Yes .... we have identified the issue and it has been resolved now. It was down to one of the cert corruption on primary admin. It was only identified after going to debug logs in prrt. Verification was done ...
