Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
DearsWe have DNA Fabric environment with Cisco 9800 WLC and ISE 3.2 integrated with it, endpoints Windows and MAC OS are using Anyconnect Client posture module (version 5.1.10.233) , on our network we have Quarantine subnet and Production subnets for...
Hello,We have issue with ISE Posture happening only on Wireless network, let me give you details:We have DNA Fabric with cisco ISE and Wireless integrated with it, we also have Palo Alto global protect with enforce policyOn our infra we have Quaranti...
Hello,We have issue with ISE Posture happening only on Wireless network, let me give you details:We have DNA Fabric with cisco ISE and Wireless integrated with it, we also have Palo Alto global protect with enforce policyOn our infra we have Quaranti...
Its seems we still see some issues especially on MAC OS, people stuck in quarantine subnet and dynamic change of IP never happens, Im thinking cause we have Global Protect VPN client from Palo Alto, it sometimes doesnt allow CoA message to be deliver...
If I will just keep both radius on WLC and remove load balancing method, I think it will send traffic to the first radius anyway? second one will work only if first radius goes down
I think we are hitting https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/215419-ise-session-management-and-posture.html Same symptoms
