About KatherineTran

KatherineTran · 12-20-2022

Hi Guys,We are currently using a public ca signed certificate for DNA and need to use an internally signed CA certificate for PNP to add the SAN options. Will we need to reprovision or re-discover the devices we are monitoring for assurance when we d...

KatherineTran · 11-18-2022

Hi Guys!I've looked at some example configurations and community posts. I have the following topology:Foreign WLC [9800] <---> Anchor WLC [5520] <--> DMZ interface (Dynamic interface group with multiple VLANs)We want to use the Anchor WLC DMZ that ha...

KatherineTran · 11-16-2022

Hi All,When relying on an external proxy server for the return VLAN (as they have the identity information for the authorisation policy) is there any way we can define on ISE what VLANs they are actually allowed to return? I think this could be a sec...

KatherineTran · 11-08-2022

Hello All,From my understanding of documentation, CDP/LLDP would not be allowed until a port is authenticated when in closed mode. Low impact mode can be used for DHCP/DNS etc but CDP/LLDP being a layer 2 protocol what options do we have if using for...

KatherineTran · 10-20-2022

Hi Guys,I've done quite a bit of research the last few days and trying to draw up a design for moving our voice which is daisy-chained onto SD-Access and struggling with a few questions.If I want a phone to utilise the voice VLAN (which I presume aut...

KatherineTran · 11-17-2022

Thanks for the response. Unfortunately, we need the authorisation policy to be returned by the external RADIUS server as it has the identity information. From my googling - I don't think it's possible on ISE!

KatherineTran · 11-10-2022

Hi Rob,I believe dot1x in closed mode will not allow CDP/LLDP/DHCP to function and therefore profile the device initially so it will not be able to get to that state?ThanksKT

KatherineTran · 10-20-2022

Wow, amazing thank you so much answers all my questions!

KatherineTran · 10-19-2022

Anyone figure this one out or is it a mystery!

KatherineTran · 02-11-2022

Thanks, Sergiu for your reply. To clarify, the VPC is one link on each Border Leaf and we do not wish to take out the resilience. So my understanding is I will need to get another physical link in to get around this caveat?

Member Since	‎02-10-2022 05:03 PM
Date Last Visited	‎02-01-2023 12:18 AM
Posts	15
Total Helpful Votes Received	15

User Statistics

User Activity

Changing System Certificate to a new CA

Multiple VLANS Anchor

Radius Proxy - Restricting Dynamic VLAN Assignment

LLDP & CDP Closed DOT1X Mode

SD-Access Voice Network Query

Re: Radius Proxy - Restricting Dynamic VLAN Assignment

Re: LLDP & CDP Closed DOT1X Mode

Re: SD-Access Voice Network Query

Re: Traffic type in SDA

Re: Multicast issues!