Resolved! Trustsec SGACL
I am creating rules (SGACL) for a trustsec matrix.I found a variation on how to permit and deny service ports.Please tell me if there is a way to deny and permit ip addresses of hosts?
I am creating rules (SGACL) for a trustsec matrix.I found a variation on how to permit and deny service ports.Please tell me if there is a way to deny and permit ip addresses of hosts?
Hello,I want to check periodically the USB mass storage .I can check it every time I connect, but once the PC is connected, I cannot do the continuous monitoring.i.e. :I connect the PC without the USB.The posture assessment is OKThen I plug the USB, ...
What are the privileges that the Admin Account needs to have, after ISE has been integrated with AD? In other words: what are the minimum settings that the Service account, used to log in AD and create the ISE-AD integration, needs to have to contin...
I have a customer running ISE 2.4 looking to upgrade. The current ISE golden image version is 2.7. But 3.0 is also available and it seems this will be the long term build going forward. I understanding the licensing implications of 3.0.Based on this ...
I found suspicious messages in ISE Report -> Audit -> Operations Audit. There is Stunnel Service started aprox. every 30 seconds on one PSN node (the rest 3 PSN nodes in deployment does not do this). The whole message:----ISE process was restarted by...
Hello everyoneI need to reload two ise nodes due to a bug that caused licensing consumption page to show zero. ise1 primary(pan/mnt) and ise2 Secondary(pan/mnt). I have 4 psn nodes and they should stay up. I need to ensure no downtime. I know I have...
Hi all . I have specific situation/problem for Anyconnect VPN static ip assignment. -it does not work Anyconnect 4.6 client ASA 9.4.4 interim Authentication with cetificate Authorization with Posture check . 1. Users Authenicate on ASA with cer...
The AAA server for ASA Remote VPN is ISE.The DHCP server is the ASA.I want to use static IP of some identity of ISE.Is there a good way??
Hello AllThe current demand for Sessions requires a total of 50,000My device is Model for SNS 3600, a total of twoBuy a license for 25000 SessionsI set up the two deployments, can it reach Sessions 50000
Hello, We have a power outage last week and the primary ISE went down, but the 2ndary didn't kick in, so we had to do it manually to promote to primary, the process took 1 hour and 30 minutes for initiating the services to be back in running mode. ...
Hi Experts,I have posted this same query on AnyConnect forums, but also wanted get a view from ISE's end.Last week we have migrated from ASA to FTD. With no changes in policies or any other configuration on ISE's end. The configuration is good as it ...
Hi,Does anybody have experience of getting XIRRUS APs to work with ISE guest portals?We've installed the Xirrus NAD profile and in the authz profile, ISE tells us that we need to statically configure a special redirect URL on the AP.When a user conne...
Hii use cisco router (in edge)for remote access vpn server for windows clients (users connect from internet ) and routeruse aaa server (CISCO ISE 2.4) for authentication users .my problem :how remote access vpn users (L2TP Over IPSEC) can change pass...
Hi All, something's going wrong with dot1x auth of some win10 802.1x clients. This is how the NAS port is configured: interface GigabitEthernet1/0/5 authentication host-mode multi-domain authentication port-control auto authentication violation p...
Hello folks, I wonder if there is a way to retreive a list of all installed certificates on the ISE with their expiration time points through a HTTP call to either Monitoring API or ERS API. Their documentation seem to be uncomplete (compare https://...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
05-03-2024 05:45 AM | ||
05-03-2024 05:01 AM | ||
04-18-2024 10:01 PM | ||
04-18-2024 08:46 AM | ||
04-02-2024 12:38 AM |
User | Count |
---|---|
7 | |
7 | |
4 | |
1 | |
1 |