Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all, While rolling out traditional ISE policies to SDA policies in a customer network, we were hit by this issue:
The setup is: ISE running on 2.3 patch 5, DNAC on 1.2.6.
There are SXP tunnels from each PSN to each border per VN, to transmit the S...
Hi all,
Would like to know which ISE version is planned to support policy / configuration synchronisation between multiple ISE clusters. My SDA customer has more than 600,000 endpoints and now running with 3 ISE clusters. Considering that the feature...
HiI would like to confirm if "Deploy" button on ISE's IP-SGT binding page is pressed, will it configure the switches with "cts role-based sgt-map 1.1.1.1 sgt 10" commands? My customer have a SDA setup with DNAC (version 1.1.6) integrated with ISE (ve...
Hi all,In my customer network we are rolling out DNAC with ISE (image version 1.1.6 and 2.3P2 respectively). Customer has more than 4000 projects with multiple ODCs under each project. As the scale limit of number of AuthZ policies are less than 600,...
HiMy customer has ISE 2.3 Patch 2 integrated with Microsoft SQL 2016 Database. The design was to have dot1x endpoints to get authenticated against AD and get authorised against SQL DB values for SGT and VLAN. This is to meet scalability needs, as rec...
Hi HosukThe requirement is to have both User AND Machine Authentication only, as per supplicant settings.But when it comes to ODBC, the queries should be done based on either User_ID alone or based on the combination of User_ID and Machine name. Here...
Hi ArneI was testing this and observed there is a downtime even for the dot1x radius authentication traffic, while the Secondary PAN is promoting into Primary role. Is that an expected behaviour? As per the below link it is not supposed to impact the...
