We configured ISE to authenticate and authorized our SDWAN controllers successfully using AD as the identity source. Now we are having a problem with our C8500s and vEdges and ISE/AD. The C8500s are configure for TACACS through the AAA Feature Templa...
We recently upgraded our Cisco SDWAN devices to 12.12.2 for controllers and 17.12.2(ED) for C8500/8000v. When attaching new templates and pushing new configs the following error appears in the logs:“Failed to obtain exclusive access to the IOS parser...
Will updating the Identity certificate for an IOS XE switch or router cause traffic loss for GETVPN? I am updating the certificates for ISAKMP policy authentication to a cert signed by New Certificate Authority (CA) intermediate server. It will have ...
Hey,I am trying to re-generate a separate key-pair for SSH. Some of the sites currently use the same key-pair for SSH and GET VPN. I want to have separate keys so the risk of accidental deletion is prevented for GET VPN keys. These are all Cisco IOS ...
I realized I have to have two separate authorization policies. One with "netadmin" or "operator" for SDWAN controller access. The other with just privilege level set to "15" or "1".
@marce1000 ,Thanks for the reply. One more question.Will updating the Identity certificate for an IOS XE switch or router cause traffic loss for GETVPN? I am updating the certificates for ISAKMP policy authentication to a cert signed by new CA interm...
