About matthen

matthen · 02-05-2020

Is there a particular place in the upgrade process to upgrade a pxGrid persona, as long as it's after the secondary admin and an MnT get upgraded? Is there a recommendation for how to handle services using pxGrid during this upgrade process since yo...

matthen · 09-23-2019

Does ISE support local disk encryption in our hardware appliances? If so, do we have it documented somewhere? Thanks, Matt

matthen · 07-10-2019

Is there a way to apply an automated EPS or ANC policy when an AMP4E event is sent to ISE? Also, when I look in the threat category in my policy set condition attributes, I see attributes for vulnerability scanners, but I don't see any AMP attribute...

matthen · 06-18-2019

Is there a way to apply a patch while you're upgrading an ISE environment? My use case is, if a customer is upgrading from ISE 2.2 to 2.4, they start with their Secondary Admin, Primary Monitoring, then they start upgrading their PSNs. However, dur...

matthen · 02-20-2019

Will ISE 2.4 support the new SNS36xx series appliances?

matthen · 06-18-2019

I see that you can apply patches prior to registering PSNs to the upgraded deployment per this document: https://community.cisco.com/t5/security-documents/ise-upgrades-best-practices/ta-p/3656934#toc-hId--718381845

matthen · 01-01-2019

Thanks Jason!

matthen · 05-30-2018

Jason,Thank you for the detailed response. I have one follow-up question, some of the responses have multiple URLs, for example the Endpoint Posture Update Pre2.4 has two links:pre2.4 https://www.cisco.com/web/secure/pmbu/posture-update.xml --> http...

matthen · 08-18-2017

Wouldn't using http leave a security gap because the session wouldn't be encrypted? If I'm an employee using the sponsor portal to register a guest, don't I risk passing my credentials in the clear over the network?Thanks,Matt

matthen · 05-23-2017

Thank you! This was helpful, but do you know if there is a way to pass back a name from the certificate itself, like UPN or CN, and look that up in AD to get group membership(s) to determine which authorization policy to apply?

Member Since	‎03-18-2015 08:05 AM
Date Last Visited	‎06-17-2020 02:17 PM
Posts	24
Total Helpful Votes Received	9

User Statistics

User Activity

Upgrading an ISE pxGrid persona

ISE Local Disk Encryption

TC-NAC with AMP ANC/EPS

ISE patch while upgrading

ISE 2.4 support for SNS36xx

Re: ISE patch while upgrading

Re: ISE Small Deployment Server Size

Re: ISE URLs for external service updates

Re: When is bug CSCuw70713 expected to be fixed?

Re: Authorization without Authentication