In my companies network looks like there is a +/- 10 minute delay between ACS reading information from AD as well as the ACS caching information instead of reading AD info in real time
We have Cisco ACS
Version : 5.8.1.4
AD domain controller - ...
I'm facing the same probem with the vulnerabilty scans even tho I can confirm that any attempt to access Cisco ISE via http gets redirected to https. The remote HTTPS server does not send the HTTP"Strict-Transport-Security" header.
I had a version of issue now recently as well, but caused real problems. Switch started to get security violations and dot1x failures for this MAC on multiple random ports every day. After some time of this alert while we were debugging, the switch s...
Problem was on the Cisco ACS configuration, primary LDAP server was wrongly setup pointing to the backup AD server
Information between primary and backup AD servers takes 15 minutes to replicate
Changing the primary LDAP server under "Users and Ident...