About sadashivpalde

sadashivpalde · 11-13-2018

Hello All, We are having ISE2.4 Patch1 in deployment with Cisco WS-C2960+48TC-L {IOS v15.2(4)E6}. We want to use dACL for Non-Compliant Endpoints with limited access. We used dACL of 67 lines, the dACL gets applied on interface, but something goes ...

sadashivpalde · 08-02-2018

Hello All, We are having an ISE 2.4 Patch 1 deployment and customer wants an email notification for each and every failed authentication as well as for rogue (non-domain) endpoints connected in network. Also, need to check if rogue (non-domain) e...

sadashivpalde · 07-05-2018

Hello All,We are deploying ISE for wired network with 18 ISE nodes and want to set TCP Connections limit and TCP/UDP/ICMP rate limit. Below are the cluster details:ISE 2.4 (2 admin, 2 Mnt, 14 PSN's) on 3595 appliances.Endpoints: 150,000NAD: 7000+ swi...

sadashivpalde · 04-13-2018

Hi Team,I am deploying ISE 2.2 patch 6in production at one my customers and having a query regarding monitor mode and eap chaining.Components used:ISE 2.2 P6AnyConnect NAM 4.5.xDot1x Authentication - user and machine certificate authenticationSwitch ...

sadashivpalde · 03-31-2017

We are facing this issue on multiple windows endpoints. If we login with domain user, the posture scan gets stuck at 10%. Posture conditions are in Audit mode . But, when we login with local user or admin user on same machine, we are able to complete...

sadashivpalde · 11-13-2018

Hi, Thanks for the update. I have validated it in ISE and it is showing an Valid dACL. However, in ISE it only checks the Syntax and I am more concerned about multiple ports mentioned in same line for few of the IP's as mentioned in dACL. Reg...

sadashivpalde · 04-20-2018

Hi Gee,You can directly install patch 7 as ISE patches are cumulative, instead of installing patch 1 to patch 7.I believe the patch is already integrated with 2.2 Patch 7. So if you are using 2.2 patch 7, you do not need to install struts-fix patch s...

sadashivpalde · 04-18-2018

Hi Steven,Thanks for your inputs and we also has the same observartion.So one more query comes in my mind is, if user certificate is present and machine certificate is not present i.e, User Succeeded and Machine failed then the endpoint gets the netw...

sadashivpalde · 04-17-2018

Hi Paul,Thanks for your reply and workaround.However, this workaround would not be feasible in our case. My original query is related to behavior of NAM if user certificate is not present on endpoint and switch is configured in authentication open mo...

sadashivpalde · 02-07-2017

Cisco has released new version of NSA(v2.2.0.54) for android and we have successfully tested on couple of endpoints.

Member Since	‎08-16-2016 02:59 AM
Date Last Visited	‎11-20-2018 02:47 AM
Posts	14
Total Helpful Votes Received	1

User Statistics

User Activity

dACL Validation

Email notification for each and every failed authentication

ISE Hardening: TCP Connection (conn-limit) limit and TCP/UDP/ICMP (rate-limit) in ISE

Authentication Open on switch Vs EAP chaining with user and machine certificate

ISE Anyconnect Posture Scan gets stuck at 10% on windows Endpoints

Re: dACL Validation

Re: ISE patch upgrading

Re: Authentication Open on switch Vs EAP chaining with user and machine certificate

Re: Authentication Open on switch Vs EAP chaining with user and machine certificate

Cisco has released new