About mariya.telitsina

mariya.telitsina · 02-02-2023

I'm having ISE 3.1 patch 3 . After disabling tls 1.0 the app server restarted and I could never login to any ISE node in deployment. It just shows blank page after login.The services are working fine, it's the admin GUI that is not accessible. I foun...

mariya.telitsina · 10-13-2022

Hello,I have dot1x enabled on all ports including those to which APs connected.My scheme is like this:clients -- Access Point -- Access Switch -- Access Switch -- Access Point -- Clientswhen a client moves from one AP to another, his mac address stay...

mariya.telitsina · 06-19-2025

Hello, I have just run into this issue. Just for the info: I had a DACL with 10 lines, i deleted 4 deny statements, leaving only permit tcp any host xxx . it helped me, so I hope it will help to others. Always check the syntax of DACL and the source ...

mariya.telitsina · 05-14-2024

Hello @Jason2005 ,do you have problems with wired or wireless?yes, i've done many many config changes since then and now it's working OK, but we are still in a monitoring state of Dot1x.for access points' uplink ports I did the following settings:aut...

mariya.telitsina · 10-13-2022

thanks a lot for your reply, that is really helpful.i did some googling and this is a guide for configuring flexconnect+dot1x in case someone else would also need it.https://www.cisco.com/c/en/us/support/docs/wireless/wireless-lan-controller-softwar...

mariya.telitsina · 10-13-2022

thank you for your reply, it is in FlexConnect mode indeed. The thing is that we want everyone to be authenticated via dot1x, both wireless AP and clients. is it not possible?so I have two options: local mode+dot1x or flexconnect with multihost mode?

mariya.telitsina · 10-12-2022

Hi,As far as I know, if a mac address is authorized via dot1x or port-security , it becomes static (and secure). and never ages out.Please correct me if I got it wrong.

Member Since	‎10-22-2021 04:23 AM
Date Last Visited	‎06-24-2025 12:12 AM
Posts	14

User Statistics

User Activity

Disabling TLS 1.0 broke GUI access to ISE

dot1x timers + static mac aging = connectivity issue

Re: Authorization Failure Reason: ACL Failure

Re: Wired Dot1x clients cannot get a DHCP IP address on a 3560 switch

Re: dot1x timers + static mac aging = connectivity issue

Re: dot1x timers + static mac aging = connectivity issue

Re: Wired 802.1x - Monitor Mode - MAC-Addresses showing up Static?