Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,
Challenge overview: Wireless refresh and need to enable 6GHz on the legacy SSID, currently this SSID is configured for 2.4/5GHz using 802.1x/WPA2.
What's the best approach to meet the new security requirements for 6GHz, as I have concerns reg...
Hi All,
Looking at deploying 2 x Azure/Entra ID Marketplace Cisco ISE instances in the same region but in separate availability zones for HA, then use Azure Site Recovery for DR to a secondary region.
Any one done this? Any docs, tips or gotcha's wou...
Hi All,
Got an issue with trying to get ISE to authenticate and authorise clients from a NetScaler to local AD but also using MFA to Entra.
I've got ISE configured for NADs, policy sets and REST ID with Azure Active Directory, for some reason clients...
Hi All,
We have Cisco ISE 3.3 (6 nodes with 2 PSNs) and 2 ASAs used for authorising VPN users, recently the VPNs have been making the Cisco ISE severs as dead.
The ASAs are using depletion method with the default settings of10mins and 3 max tries.
Qu...
Hi Greg,
Appreciate your response, the use case currently used is NetScaler >NPS+ Extension > Azure MFA, the assumption was that ISE could take over that role from NPS and provide radius (MSChapv2) and MFA support.
Hi Aref,
Many thanks for the speedy reply, yes its the ISE cube that's moved to VM as our appliances went EoL/EoS. Checked on ISE dashboard nothing untoward being reported back.
I'll check on the ASAs and see if I can pin point the logs at the time ...
Hi Marcelo,
Quick question - clients are using AnyConnect 4.10 (Compliance mod, NM mod, VPN mod etc) distributed via SCCM not ISE.
What packages are required on ISE 3.3 to support AC 4.10? Do we only need to install the secure client package and this...
Also quick question, my AnyConnect profile is using machine certificates plus AAA for client logins.
In ISE we can see PAP radius requests coming in but only client username/password and client MAC address, should we also see the machine name strippe...
