About jyla

jyla · 02-23-2024

Have anyone else noticed that all the new profiling policies provided by Cisco are configured to create matching Identity Group ? The explanation from Cisco TAC is that this is how it is supposed to be, I just find it odd that suddenly all these d...

jyla · 02-02-2024

Wonder if anyone else experienced this strange thing 2 days ago. Suddenly ISE decided to perform CoA on a lot of endpoints, some of them several times, some only once.All the endpoints were Cisco accesspoints, which in our setup results in a port-bou...

jyla · 09-17-2020

Been struggling with this for a while .. just updated to 2.7 patch2 and saw it was not fixed yet - only in 3.0 ?Can this really be true ?

jyla · 05-09-2025

This actually turned out to be the issue. So after regenerating the kong certificates, we could login to the ISE CLI/console again and the webgui started up.

jyla · 05-03-2025

Hi Marcelo, Thanks for the feedback. Yes, that probably ends up being the solution - but I surely hope Cisco/TAC are interested in finding the rootcause to prevent other users getting hits by the same issue The deployment is only used for tacacs and...

jyla · 05-01-2025

Hi Ryan, Sorry for waking up this old thread - but we might have hit the same issue as you, and I wonder if you ever got it fixed (and found the rootcause) ? We upgraded from 3.2p6 to 3.3p4. Issue shows up clearly using securecrt as ssh client, here ...

jyla · 04-15-2024

After a long session with TAC we ended up with conclusions/actions: - We have changed the behaviour of profiling from port-bounce to re-auth, to avoid AP's and ip phones being reloaded in case of re-profiling. - We have disabled automated profiler fe...

jyla · 02-23-2024

I have seen this on 2 deployments 3.1 patch 83.2 patch 4 FYI. this is seen in the configuration audit logs at the time.

Member Since	‎11-01-2017 02:19 AM
Date Last Visited	‎10-03-2025 05:46 AM
Posts	14
Total Helpful Votes Received	5

User Statistics

User Activity

Profiling policies (30. jan 2024) creates matching Identity Group

Cisco ISE, FEEDAUTODOWNLOAD updated Cisco-Device Profiling Policy

CSCvq12204 - ISE 2.4 SNMPv3 user added with wrong hash after reload causing SNMPv3 authentication failure.

Re: Can't access ISE secondary node via CLI / GUI after joining deploy

Re: Can't access ISE secondary node via CLI / GUI after joining deploy

Re: Can't access ISE secondary node via CLI / GUI after joining deploy

Re: Cisco ISE, FEEDAUTODOWNLOAD updated Cisco-Device Profiling Policy

Re: Profiling policies (30. jan 2024) creates matching Identity Group