Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We configured ISE to authenticate and authorized our SDWAN controllers successfully using AD as the identity source. Now we are having a problem with our C8500s and vEdges and ISE/AD. The C8500s are configure for TACACS through the AAA Feature Templa...
We recently upgraded our Cisco SDWAN devices to 12.12.2 for controllers and 17.12.2(ED) for C8500/8000v. When attaching new templates and pushing new configs the following error appears in the logs:“Failed to obtain exclusive access to the IOS parser...
Will updating the Identity certificate for an IOS XE switch or router cause traffic loss for GETVPN? I am updating the certificates for ISAKMP policy authentication to a cert signed by New Certificate Authority (CA) intermediate server. It will have ...
Hey,I am trying to re-generate a separate key-pair for SSH. Some of the sites currently use the same key-pair for SSH and GET VPN. I want to have separate keys so the risk of accidental deletion is prevented for GET VPN keys. These are all Cisco IOS ...
I realized I have to have two separate authorization policies. One with "netadmin" or "operator" for SDWAN controller access. The other with just privilege level set to "15" or "1".
@Mark Elsen ,Thanks for the reply. One more question.Will updating the Identity certificate for an IOS XE switch or router cause traffic loss for GETVPN? I am updating the certificates for ISAKMP policy authentication to a cert signed by new CA inter...
