Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,
We have configured Cisco ISE as TACACS server. When Cisco ISE was not reachable from nexus7k/nexus 5k then we are not able to execute any commands on the nexus 7k /nexus 5k switches after logging into them via console.
Error is ,
Error: AAA a...
Hi Experts,
We are using C1100TG-1N32A as a console server where we have console ports of nexus 9k / Palo alto FWs/ F5 LBs are connected.
I can get into nexus 9k/Palo alto FWs/F5 LBs via console from C1100TG-1N32A.Once I log out from the device I am ...
Hi All ,
We have SNS-3755-K9 in the production network.After installing it we have noticed that live logs of TACACS are not showing on the web portal.
what is the best way to re-image the ISE ? As per Cisco TAC re-iamge should be done to fix the issu...
Hi Experts ,
I am new to Cisco ACS .TACACS is configured on ASR routers and we have necessary config done on Cisco ACS.
I would like to check command to see which ports are opened and also reason for authentication failures on ASR1001.
When i tried t...
Hi Experts ,
We have SVis configured on Nexus 7718 switches , which are part of area 0 and fabripath is running between them. We are running OSPF as IGP and We have EGBP with Palo alto Firewall.
whenever we are redistributing ospf into bgp and vice-v...
Hi Richard ,
we are using cisco C1100TG-1N32A as a console server.When we have connected console ports of Palo Alto Firewalls ie 5260 and nexus 7k ie 7710 console connection is not working.As per the data center engineer he is using Cat 6 cable to co...
Firewall team had a miss in adding below ports in the policy due to automation. It was rectified later and issue was fixed.
Thank you for your wonderful help.
ISE Messaging Service: SSL:TCP/8671• ISE internal communication:TCP/15672
without this command and also privilege level 15 under line vty 0 4 and 5 to 15 , SSH won't work.
This command on this thread helped me to resolve connection timeout from one switch to another switch while logging into it using SSH.
Hi Marcelo ,
When i am trying to add ISE-2 as a secondary node on the Primary ISE i am getting below error even after regenrating internal CA and also messaging certificate.
I have tried several options like disabling dynamic MNT etc but no luck.Any ...
Hi Marcelo ,
We have ISE-1 acting as a standalone at Data center A and ISE-2 acting as a standalone at Data center B.
We have Palo alto Firewalls before the ISE at Data Center A & B.We are planning to configure them as primary and secondary nodes.I h...
