cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3351
Views
9
Helpful
5
Replies

ISE 2.2 Patch 1

phaaring
Level 1
Level 1

Does anyone know when patch 1 for Cisco ISE 2.2 is comming?

This bug CSCvc34766 hold me against to upgrade to ISE 2.2.

1 Accepted Solution

Accepted Solutions

We do not publish any ISE patch contents nor release dates in order to prevent setting expectations of the exact date/time and content of the patch release. It is supposed to be coming in April but the Engineering team has not given a specific date or final bug list.

View solution in original post

5 Replies 5

M. Wisely
Level 4
Level 4

The release notes for 2.2 recommends upgrading to the latest patch in your current version before you upgrade to 2.2 to avoid the bug you mention.

We do not publish any ISE patch contents nor release dates in order to prevent setting expectations of the exact date/time and content of the patch release. It is supposed to be coming in April but the Engineering team has not given a specific date or final bug list.

Hello,

I upgraded today a two ISE 2.2 in distributed deployment (one primary, one secondary), using GUI....

And I have serious issues:

- ISE 1 upgraded, after restarted it indicated an error due to timeout to restart (???)

In CLI I can see the patch (sh ver) but not in GUI.

- ISE 2 didn't upgrade > so the deployment is unable to sync...

After different tests and issues, I broke the deployment, delete ISE 2, restart ISE 2.

I rolled back patch 1 on ISE.

As it is alone, I just upgraded it by GUI > same issue: patch appears in CLI but not GUI.

For the moment I'm resinstalling ise-2, I will install patch 1 before to make the deployment primary/secondary

Screenshot: patch 1 ok in CLI, no ok in GUI

ise.png

Hi All,

I have the same issue.My step is follow,

1.Install 2 ISE

2.Register secondary ISE

3.Install patch 1 in Primary ISE via GUI.

After 1 hour,I can check the patch level at cli on Primary ISE ,but I cannot check the patch level at Administration>System >Maintenance >Patch Management. (In GUI ,about ISE can show the patch level)

The second issue,the secondary didnt install the patch after 2 hours.

Duncan

For your future reference, please start a new discussion thread, as this one was on patch release date but not patching issue.

I tried the patch in my lab but not seeing the issue as you described. Some potential as RBAC issue so I would suggest to try using an internal admin user in super admin group only. If you still have problem, then it's best to open a Cisco TAC case.

On the primary ISE node, you may the following CLI to get some clue why the patching (via admin web UI) not getting to the secondary ISE nodes.

show logging application patch.log

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: