Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a Cisco 3650 on IOS XE 16.12.06 that has some endpoints connected to it and authorizing successfully via MAB.Here is the issue that has happened multiple times now - Randomly, usually during the middle of the night, these devices will fail wit...
I have a lab set up and I have been tinkering with pushing MACsec policies using EAP-TLS to workstations. When I have a workstation connected to an interface, everything works as intended. Link is secured using MACsec. When I plug in an IP phone to t...
I am in the process of migrating from v2.4 to v3.1 and during this process, a new device type was introduced to our network that only supports TLSv1.0. On the new v3.1 ISE server, I have disabled TLSv1.0 and TLSv1.1 in the security settings. The devi...
Good morning,I am attempting to troubleshoot an odd issue I am seeing with a Cat9300 v17.3.3 pointing to a v3.1 p4 ISE Server. When configuring interfaces with 802.1x/MAB, the devices will fail to Auth. The switch configuration matches a known good w...
The design of our new ISE cube has two SNS-3655 nodes that will act as the Admin/MnT/PSN on each. I am wondering if it is possible to run 3 dedicated connections to the appliance to separate the traffic based on the persona. When I look in the deploy...
@GREGORY LEGGETT Here is a more recent doc, https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9300/software/release/17-3/configuration_guide/sec/b_173_sec_9300_cg/macsec_encryption.htmlIn standard (not 802.1x REV) 802.1x multiple-domain mode...
Thank you all for the responses. On Friday I requested that the switch be reloaded to see if it would resolve the issue, but it was also upraded to a new code. Since then the issue seems to be resolved. Platform State from SMD is now showing as UP.I ...
We use the same interface template config for all devices, it would be strange that this particular NAD would have issues with it. I have scheduled to have this device rebooted tonight and hope to dive more into the config on Monday.
