Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi team,
We have a hybrid on-prem/Azure environment but currently running ISE on-prem as a small deployment (2 nodes) as well as two load balancers.
We are thinking about moving one of the ISE nodes to Azure and would like your advise on what approac...
Hi team,
We are using self signed certificates for EAP authentication in ISE and wondering if its possible to have one of the nodes sign both EAP-certificates for both nodes? The reason is to avoid deploying certificates for both ISE nodes to every c...
Hi team,We had a ongoing Secure Connect trial which we are not using anymore and want to delete but are unable for some reason. The error says that there is "still networks" configured but that is not the case since there are no networks configured a...
Hi team,
We've run into a strange problem we've never encountered before.
We have deployed machine certificates from a Microsoft CA which we use for 802.1X auth.ISE system certificate for EAP auth is self-signed, and deployed as trusted on the client...
Hi @Greg Gibbs Was looking back at this case which helped me solve a case we had with a customer on prem. Thanks for all the help!But, now I have another customer running ISE on prem but want to move one of the ISE nodes to Azure. The challange for...
Hi @thomas,Was looking back at this case which helped me solve a case we had with a customer on prem. Thanks for all the help!But, now I have another customer running ISE on prem but want to move one of the ISE nodes to Azure. The challange for this ...
Hi and thanks for responding!
As far as I understand, for the LB to work transparent, ISE need to route the traffic back to the LB for all the NADs. This is impossible since on-prem ISE is not in the same network as Azure LB. So how do you solve it...
Hi and thanks for responding!
As far as I understand, for the LB to work transparent, ISE need to route the traffic back to the LB for all the NADs. This is impossible since on-prem ISE is not in the same network as Azure LB. So how do you solve it?
Thanks for the detailed answer Arne.
The reason is that in this case, ISE servs several diffrent domains and CA issuers so we couldnt issue a certificate from a specific CA. However, we did setup a MS CA and issued a cert to the nodes as it was the o...
