About imanv

imanv · 05-24-2025

I want to know that is it possible to change the Split Tunnel access-list using ISE ?I mean the remote client first connect with a limited split tunnel access list and after successful authentication and authorization in ISE, new split tunnel set.

imanv · 05-24-2025

I have a Cisco ASA configured as a VPN gateway using AnyConnect as the VPN client, and I plan to migrate to FTD soon. My remote access SSL VPN setup includes split tunneling with ISE posture assessment. However, I suspect I’m making a misconfiguratio...

Using ISE API for Authorization Profiles · 04-20-2025

I am trying to use the ISE API to create my bulk Authorization profiles. I write the following Python Code. This code create Authorization profiles, but I still unable to select and change the the Advanced Attributes parts of the profiles when I crea...

ISE MAX Authorization profile · 02-28-2025

I have ISE with more than 600 authorization profiles. I know that the ISE has 3K limitation on authorization profiles, but I don't understand why authorization profiles in my deployment won't open. After trying and waiting for a 5-10 mins, the Applic...

imanv · 02-16-2025

I have some problems with SEG. In the first step, I tried to install a trial version for my LAB. I got the license from my CCO account, but I found that these licenses are traditional and usable for AsyncOS 14. I installed two AsyncOS 14 in cluster m...

imanv · 04-23-2025

I found the problem I want you to know it as well.The problem was at advancedAttributes in the code. I should write it advanced_Attributes.

Re: ISE MAX Authorization profile · 03-01-2025

I check the processing in PAN when I'm trying to fetch the Authorization profiles and I found that the CPU load is going high. Here is the MAX CPU log.Even after the loading profiles, creating a new profile also has taking a long time.I used applicat...

Re: ISE MAX Authorization profile · 03-01-2025

@marce1000 Thanks for your reply. Actually my problem is the authorization profiles not open and If I try to open it and stay for 5-8 min, the Application Server will rebooted and access to PAN lost until the Application Server loading finish.

imanv · 02-15-2025

@Marvin RhoadsThank you very much.In fact I have separate domain for non-corporate users. The users are not joined to the domain. I use it just for VPN polices.@Rob IngramThanks for your hint. I think it is possible to configure ISE as subordinate Ce...

imanv · 11-18-2023

Thanks for reply.Yes, But I nothing is changed.I had an idea. to clear the portions, I tried to change the active portion and then I change the AP mode from CAPWAP (Lightweight) Mode to Mobility Express, and then try to back to Lightweight.In this pr...

Member Since	‎11-14-2017 11:41 PM
Date Last Visited	‎05-24-2025 10:58 PM
Posts	33
Total Helpful Votes Received	81

User Statistics

User Activity

Remote Access VPN with Split tunnel

Remote Access SSL VPN with Split tunneling and ISE posture

Using ISE API for Authorization Profiles

ISE MAX Authorization profile

SEG upgrade AsyncOS Problem

Re: Using ISE API for Authorization Profiles

Re: ISE MAX Authorization profile

Re: ISE MAX Authorization profile

Re: Client Certificate for 802.1x and Microsoft CA

Re: lightweight access point 1832 error log