Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have two Nexus 7010's in a VPC domain (single VDC) with two 10gb Peerlinks between the two.For our Internet Edge, I am using 2xASA5520's in a Active/Passive arrangement.The ASA's are connected directly to the N7K, one each.The current configuration...
I am trying to get all workstations (OSX and Windows) to install both the Native Supplicant Wizard and NAC Agent during the On-boarding process.I am currently using the default guest portal in ISE.The environment has been setup using a Dual SSID desi...
I am running a ISE 1.1.1 trial and have setup most AuthC/Z policies mainly following the BYOD Design Guide at Design Zone. I have also been refering to the Trustsec 2.1 guides as well.The problem I have is that when an iPAD connects to the On-boardin...
A bit late on the update, but we did manage to put the VLAN connecting the ASA and the Nexus onto a non-vpc vlan. Once this was done, the OSPF peering worked
Form the N5K setup:N5K-1# sho ip ospf nei OSPF Process ID 200 VRF default Total number of neighbors: 2 Neighbor ID Pri State Up Time Address Interface 172.16.17.2 1 FULL/DROTHER 26w0d 172.16.17.3 Vlan200 172.1...
I don't believe it is a multicast issue as the ASA and N7K's are pariticipating in the same vlan. Going across the peerlink would not decrement the TTL since it isn't crossing a L3 border.As for the N5K, it is configured exactly the same as the N7K w...
All works well.Combination of your first post and "Posture Applicable" allowed the iDevices to connect without needing to go through Agent provisioning.
Thanks.I've tried implementing it using the two stage setup as you proposed. It works well, the NSP is deployed first, then the user reconnects and gets redirected to install the Agent.The issue is now with iPADs which don't support the NAC Agent. Be...
