Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I'm struggling to use smart licensing & smart software manager on-prem on a virtual FMC (tried with ver. 6.3.0.2, 6.5 and 6.5.0.1).I've installed Smart Software Manager On-Prem (ver. 7-201910) and succesfully added ESA, ISE and Cat9300 to its inve...
Hi, One of the major concerns regarding security solutions is the way they interact. ISE specifically, is compatible with most of the SIEMs available today, as stated by Cisco (http://www.cisco.com/en/US/prod/vpndevc/ecosystem.html). In my particular...
Hi, For 1.1.x version of ISE, there are some constraints regarding the certificates used for iPEP and Admin:Both EKU attributes should be disabled, if both EKU attributes are disabled in the Inline Posture certificate, or both EKU attributes should b...
Hi, I just configured two 3315 as iPEP HA pair in routed mode. Two hours after setup I noticed in ISE Admin dashboard a ~70% CPU load on both iPEP nodes. Are there any commands to investigate this strange behaviour giving the fact that the cluster ...
Hi,
I think a little tiny error slipped here
The most important thing to remember is that we need a DNA Advantage license for StackWise Virtual to work.
You need Network Advantage for StackWise Virtual, not DNA Advantage
https://www.cisco...
Hi,
Still, let's assume I want to integrate ISE with DNA for Assurance only. I don't care about SD-Access I don't plan to implement it, so no SGT no contracts, no SGACLs.
By integrating ISE with DNA I can have endpoint/user visibility in DNA for tro...
Hi,
I belive you have a 'standard' IP Phone. This means you need a voice VLAN on switch port + your phone sends its own traffic tagged. When you authenticate your phone, ISE has to return voice VLAN permissions (voice vlan in the authorization profil...
Hi,
You mentioned "establish connection on Inside PC not blocking after mentioned time, but new connections is blocking."
It's normal behaviour. It never worked differently.
Time-based ACLs affect new connections, not existing ones.
BR,
Octavian
