Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
with ISE 2.1in case enable email notifications to guests has been disabled (unchecked)then it's still possible for a sponsor to select mail notification:If the sponsor (who is not aware of any policy/configuration) tries to send an email he'll receiv...
ISE 2.0
WLC: 8.1.131
Is the following normal behavior?
dot1x enabled on 2700i ap, ap connected to port configured with dot1x
step 1
event PAC Provisioned
authC: ok --> success
authZ: ok
authZ result: <>
result access reject
eap-fast, eap-mscha...
In all examples of device self registration - authentication seems to be done only after the coa after registration?
auth:
mab : user not found - continue
authz:
if guestendpoint and ssid 'guest' => accept
if ssid 'guest' : accept + cwa
Thus o...
I would like to know when the secondary WLC in the HA cluster is active. This should be possible via CISCO-LWAPP-HA-MIB
To achieve this I've downloaded Standard-MIBS-Cisco_8.1 and MIBS_8.1 from the controller software page.
My problem is that I'm n...
I'm wondering if there's a best practice regarding the subnet size of the dynamic interface.Is for example a /16 recommended, knowing broadcast/multicast to the clients are disabled.I've a setup where via aaa override, the users are placed in their c...
your authz policy looks like: Profiled_7911 & member of allowed_mac
It's normal behavior that the first time the authz rule is hit - but normally a coa should take place after a small time once ise receives new info from the sensors.
You don't see...
Did you test it?
object 10 not
> when the next hop is not reachable, --> true
Unless the next hop/eigrp neighbor will be reachable via the summary route.
Ran in this issue too after upgrading WS-C3750X-48P to c3750e-universalk9-mz.152-2.E4
no ip cef optimize neighbor resolution fixed the problem for me as well.
If you want to kick in the static route when the eigrp neighbor is not reachable - you could configure the following:
I don't know if that is what you're looking for?
ip sla 10
icmp-echo 10.128.193.125
track 10 ip sla 10 reachability
ip sla ...
Correct,
Once in VSS there's only 1 device to manage.
I suggest also to have a look at the VSS design guide:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/VSS30dg/campusVSS_DG/VSS-dg_ch1.html
