Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello, I am trying to do NAC for AP's 916x series and 913x series. However on some occasions the AP does not get added to Internal Endpoints and even if I add it it does not match the profiling policy. In auth report I can see it sending RADIUS attri...
Hello,I have an issue with AP's that during NAC implementation on the port they should first get profiled by sending device-sensor attributes to ISE and once they get profiled they should do CoA and hit the rule that allows them communication to WLC ...
Hello Everyone,Wanted to check with you if you've encountered such scenario where you had NAC enabled (multi-auth mode) on the Catalyst 9300 switch and on some ports there were some downstream switches connected that do not support dot1x/mab. I wante...
Hello Jack!Very grateful for the response! My biggest concern is wireless (as in some places there are no floor jacks for ethernet connectivity) and how to achieve it in a EAP-TLS based SSID with Entra/Intune joined SharedPC'sBest regards,Dorian
Hello,Refreshing the topic, we face similar issue today but with Intune + NDES server issuing user certificate for SharedPC's , where multiple users log in on a shift. We tried SSO 120 seconds delay timer (max you can set from Intune) but it didn't h...
I even created a separate profiling rule that matches on cdpCachePlatform and gives 200 points but still no luck with this. Was thinking also about Endpoint Attribute Filter that is enabled, but still as this attribute is used in profiling rule it sh...
Yes, I see both MAB/dot1x as we run them concurrent. Last week we were doing the resync of the monitoring nodes, as we were having some issues with NMAP scans. Even more interesting is that in MAB auth attempts initially there was no CiscoAVPair with...
It sends such TLV's. I even created a CUSTOMATTRIBUTE for profiling "cdp-tlv" contains CW916, but it does not seem to be matching as wellcdp-tlvcdpCacheCapabilities=00:00:00:03cdp-tlvcdpCachePlatform=cisco CW9164I-ROWlldp-tlvlldpSystemCapabilitiesMap...
