Hi all,I have two WS-4500X-32 switches that are running in VSS mode.Current IOS XE version is 03.06.05.E.152-2.E5 and current ROMMON Image is 15.0(1r)SG10. I want to upgrade IOS XE image to SPA.03.11.02.E.152-7. My main question do I need to upgrade ...
Hi all,is there any reason why I don't see telnet as option on ISE 2.4? Do I need to enable somewhere as feature?It's really annoying if you want to test some connections from ISE. I have ACS 5.8 and telnet is there. ise02/admin# t?tech terminal trac...
Hi all,i have problem with adding secondary node to primary. I can ping them, nslookup on both sides gives me correct entry. I did tcp dump on destination FW, don't see that something is blocking...primary is using 443 port when I try to register sec...
Hi all,if there option for ACS 5.8 to have access on web via two different interface IPs?My ACS 5.8 now have only one IP configured, and that one is used for AAA comunicatuions as well as for mgmt access.It's install on VM machine and I added anothe...
Hi guys,does anyone know how long ACS (5.8) keeps reports in history? Is this some parameter that I can configure, or there is some default value that I cannot change.I reports I can see that we can go back 30 days. Thanks,NenadOther Security Subject...
Hi pieterh,thanks for comment. I was reading release notes before, just was not sure, needed another "pair of eyes".As its not mandatory I will leave them on 5.0(1r)SG10 since I don't have any problems with hitting some bugs on SG10. Regards,N
Hi @Arne Bier,thanks for replying. Didn‘t know they removed telnet, for me unnecessary but this is how it is.For TCP dump there is option from GIU where you can specify on which node (if you have deployment) and choose on which interface you want to ...
If you are using ISE server for AAA, maybe you can just create command set for specific device, exclude command for changing password and have privilege 15 for everything else. Like use elevated access.
Hi,problem was not with certificate. Problem was that on primary I had patch installed which I hadn't on secondary. After removing patch issue was resolved. Thanks, N
Debug authen/auth didn't show anuthing. Still nothing, someone still trying to connect on asr with that weird username every 3 min. I don't have nothing connected to console port on asr. Very strange situation... Regards, Nenad
