About Jay233

Jay233 · 11-25-2025

Hi All, Challenge overview: Wireless refresh and need to enable 6GHz on the legacy SSID, currently this SSID is configured for 2.4/5GHz using 802.1x/WPA2. What's the best approach to meet the new security requirements for 6GHz, as I have concerns reg...

Jay233 · 05-16-2025

Hi All, Looking at deploying 2 x Azure/Entra ID Marketplace Cisco ISE instances in the same region but in separate availability zones for HA, then use Azure Site Recovery for DR to a secondary region. Any one done this? Any docs, tips or gotcha's wou...

Jay233 · 05-14-2025

Hi All, Got an issue with trying to get ISE to authenticate and authorise clients from a NetScaler to local AD but also using MFA to Entra. I've got ISE configured for NADs, policy sets and REST ID with Azure Active Directory, for some reason clients...

Jay233 · 03-31-2025

Hi All, Any good documentation on this would really help, thanks.

Jay233 · 11-06-2024

Hi All, We have Cisco ISE 3.3 (6 nodes with 2 PSNs) and 2 ASAs used for authorising VPN users, recently the VPNs have been making the Cisco ISE severs as dead. The ASAs are using depletion method with the default settings of10mins and 3 max tries. Qu...

Jay233 · 05-15-2025

Hi Greg, Appreciate your response, the use case currently used is NetScaler >NPS+ Extension > Azure MFA, the assumption was that ISE could take over that role from NPS and provide radius (MSChapv2) and MFA support.

Jay233 · 11-06-2024

Hi Aref, Many thanks for the speedy reply, yes its the ISE cube that's moved to VM as our appliances went EoL/EoS. Checked on ISE dashboard nothing untoward being reported back. I'll check on the ASAs and see if I can pin point the logs at the time ...

Jay233 · 07-24-2024

Hi Marcelo, Quick question - clients are using AnyConnect 4.10 (Compliance mod, NM mod, VPN mod etc) distributed via SCCM not ISE. What packages are required on ISE 3.3 to support AC 4.10? Do we only need to install the secure client package and this...

Jay233 · 07-10-2024

Hi Arne, Many thanks for clarification, this was my thoughts and was originally sceptical on being able to retain access to the legacy admin node.

Jay233 · 02-22-2024

Also quick question, my AnyConnect profile is using machine certificates plus AAA for client logins. In ISE we can see PAP radius requests coming in but only client username/password and client MAC address, should we also see the machine name strippe...

Member Since	‎01-15-2007 12:40 PM
Date Last Visited	‎11-19-2025 09:41 AM
Posts	213
Total Helpful Votes Received	29

User Statistics

User Activity

Cisco 6GHz New AP's

Cisco ISE in Entra ID

Cisco ISE and NetScaler, Entra ID

Hotspot - gRE Tunnels (WLC and FlexConnect AP's)

Cisco ISE 3.3 and Cisco ASA (VPN Authorisation only)

Re: Cisco ISE and NetScaler, Entra ID

Re: Cisco ISE 3.3 and Cisco ASA (VPN Authorisation only)

Re: Cisco ISE 2.7 - 3.3 (Posture)

Re: Cisco ISE 2.7 (EoL / EoS)

Re: Cisco AnyConnect-Machine Auth Cert & Cisco ISE for Authori