About Andreas Hoffmann

Andreas Hoffmann · 09-26-2017

I am trying to replace the web certificate used for the Guest portal of my ISE ver 2.1.0.474; the current certificate was issued by the now deprecated StartSSL CA and thus needs to be replaced. I generated a CSR with the valid domain name, exported i...

Andreas Hoffmann · 05-29-2017

Running ISE 2.1 The certificate used by the portal (Default Portal Cetificate Group) is about to expire. Under "Administration" -> "System" -> "Certificate Management" -> "Certificate Signing Request", I generated a new CSR, submitted it to the CA fo...

Andreas Hoffmann · 10-30-2013

We use three different sponsor accounts to manage guest logons on ISE. These work fine a few times but the accounts become disabled after a short period of time. We don't know when and how often this happens, but virtually every time one of the spons...

Andreas Hoffmann · 08-07-2013

We have a Cisco 2500 Series Wireless LAN Controller and several AIR-LAP1142N-E-K9 already running.Today I wanted to add two new access points, but they are AIR-CAP1602I-E-K9.I understand they should essentially work "out of the box", but they don't:W...

Andreas Hoffmann · 01-03-2013

I wanted to debug some USE vs. AD problems but noted that all debug files available under Opeations>Download logs>(mynode)>Debug logs are corrupt.While it seems that seom loggin is going on (e.g. the deployment.log is already accompanied by old versi...

Andreas Hoffmann · 11-07-2017

The upper certificate (serial number 3F AD 7F D6 A9 BF B8 3A) has subject = CN=StartCom Certification Authority G3,O=StartCom CA,C=ES issuer = CN=StartCom Certification Authority G3,O=StartCom CA,C=ES valid = Wed, 22 Mar 2017 07:19:56 UTC -- Sat, 22 ...

Andreas Hoffmann · 11-02-2017

@ajc wrote: I probably know about the problem you are having. I need the following from you: 1.-Provide an screenshot of the trusted certificate list. 2.-Provide an screenshot of the system certificates (I need to validate something) 3.-Go to WORK ...

Andreas Hoffmann · 10-25-2017

See below for the output of sho application status ise. This does not change when I switch certificates. However, the output of sho ports | i 443 does change (below you see the output with a working cert, with the letsencrypt cert there is no ::8443...

Andreas Hoffmann · 09-26-2017

Thank you, 1) No. I checked only "Trust for authentication witinISE", which is the same setting as with the (working) intrmediate of StartCom. I now added "Trust for client authentication and Syslog" and "Trust for authentication of Cisco Services". ...

Andreas Hoffmann · 09-26-2013

We are having the same issue. What's worst: The error is reported as CRITICAL and the description says that "No NTP Server reachable" (or that "All of the NTP Servers configured on this node are unreachable") and this is clearly wrong.Running "sho nt...

Member Since	‎12-14-2012 12:12 AM
Date Last Visited	‎11-07-2017 11:19 AM
Posts	16

User Statistics

User Activity

ISE Portal not working after new Certificate

ISE: Cannot change portal certificate

Sponsor accounts become disabled for no apparent reason

Access point CAP1602 keeps rebooting

ISE debug logs corrupt

Re: ISE Portal not working after new Certificate

Re: ISE Portal not working after new Certificate

Re: ISE Portal not working after new Certificate

Re: ISE Portal not working after new Certificate

Re: NTP Sync Failure CISCO ISE