We installed Cisco ISE-2.6 and did an initial config + restore config. Now, we are having issue with time. During installation of ISE - CET timezone was used. When we did "show clock" from CLI - I receive:
ISE01/admin# show clock
Sun Apr 04 21:18:15 CEST 2019
Which is correct - because of daylights saving time. But when look at GUI - seems all logs are 1 hour behind and not respecting Daylight saving time.
is it a bug regression of the following: CSCuy41317 || ISE2.0: one hour difference between GUI and CLI for some timezones Any input will be highly appreciated .
... View more
I was wondering about the command " merge-dacl before-avpair" that why do we need this?
I compared couple of other documentation of ISE Posture w/ ASA for VPN users but didn't find this.
What is the use-case require this now? Can someone explain it ?
... View more
Hello Krishnan,
When my customer try to run the migration tool on windows server 2012R2, the Java window opens and he choose the export ACS 4.x supported objects option.
The new Java window opens and we select the Export from ACS and provide the hostname.
Unfortunately, we always get the error that the migration tool wasn't able to connect; here are some lines we get from the windows CMD window;
INFO [Thread-5] Start connecting to ACS5 PI
ERROR [Thread-5] Native code library failed to load.java.lang.unsatisfiedLinkError: C"\software\...migTool\bin\dbjodc9.dll: Can't load IA 32-bit .dll on a AMD 64-bit platform
ERROR [Thread-5] FATAL ERROR - Cannot connect to ACS 4, Could not initialize class ianywhere.ml.jdbcodbc.IDriver
ERROR [Thread-5] Unable to connect to ACS 4 to begin Export, please ensure that:
.....
Please advise...
... View more
As you said it is DE-registered from current deployment, then i am expecting that it should be displayed as STANDALONE.
can you check in "show tech-support" and verify the Node role as following?
***************************************** Displaying ISE deployment ... ***************************************** Node Config Details NAME PERSONA ROLE ACTIVE REPLICATION ------------------- --------------- ---------- ---------- --------------- ISE-1 PAN,PSN PRIMARY NONE Not Applicable ISE-2 MNT SECONDARY STANDBY SYNC COMPLETED
... View more
what are the plans for ISE-PIC and WSA integration? I researched on it and got to know that it is not yet possible, I want to know when it will be supported, which software versions. Any ETA Please?
... View more
.jpg "VIP Advocate"){kind=icon}
