Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,I'm using an ISE v1.2 to authenticate corporate users connecting to a Corporate SSID with WPA2-Entreprise (802.1x). The client isn't planning to implement a PKI Infraestructure to use EAP-TLS, so they want to authenticate using only PEAP-MS-CH...
I'm using an Ace 4710 Appliance deployed in One-Armed mode, using Source NAT to loadbalance HTTP request to a couple of Proxy servers.Everything is working fine, but the thing is that I can't see the Clients IP addresses on Proxy's logs, so I can't k...
I have a Cisco ACE 4710 load balancing the traffic to two proxy servers, the configuration is the same since December 2012, but yesterday it stated to show SYNSEEN in the show conn command, and the hosts cannot browse. I think that means that the th...
Hi!,I'm having a issue when configuring Cisco ACS 5.2 appliance 1121 to integrate windows 2000 Active Directory as an External Users Database.I'm using an account with administrator privileges on AD (can create computer objects).The ACS register itse...
Hi Tarik,Thanks for your answers,I've attached my configured AuthZ rules and AuthZ profile for provisioning,I want the process to be the same for iPhone, Android and Windows.1) Connect to the SSID2) Login using your AD credentials PEAP-MS-CHAP-v23) R...
Hi gnijs,I have the same problem but when I set it to Allow Network Access, the ISE cannot get the MAC-Address when redirecting the client to device registration page. Did you have the same behaviour?I've attached the screenshot.Thanks for your help!
Hi Kanwal sorry for the late answer!,I had a typo on the policy to insert x-forwarded-for field at ACE,In Squid we set the logs to show the xforward field and remove it to avoid our private IP addresses to be on the header of the packets heading Inte...
Hi Kanwal,Thanks for your quick reply,I've already tried this but it didn't work. The problem is that I don't manage the proxy servers so I rely on their skills to see the logs.The Proxies are Squid. Do you know if they need to do something else on t...
Hi Cesar,Thank you for your answer,, The issue was solved,We were running an A3 software version, it seems to have a Bug so it doesn't show the NAT commands in the "show run", so when we made the configuration backup we didn't noticed it. The ACE rel...
