Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
730
Views
1
Helpful
1
Replies

TS-Agent has issue with ISE/ISE-PIC

Go to solution
csco11552159
Level 5
Level 5

‎06-15-2018 07:45 AM

Is there anyone on forum using Cisco TS Agent to send user ID, IP and Ports mapping to ISE/ISE-PIC, then FMC can learn it via Pxgrid?

I tried but doesnt work at all. TS Agent configured with port 9094, but never be able to connect ISE.

Did I configure something wrong or TS agent has bug??

1 Accepted Solution

Accepted Solutions

Go to solution
hslai
Cisco Employee
Cisco Employee

‎06-16-2018 09:35 AM

As you mentioned it unable to connect ISE, please check ISE able to resolve the agent's hostname and reverse lookup the agent's IP address, and verify that ISE listening on that TCP port 9094 (e.g. CLI "show ports). If it is, take a packet capture in between. Also, enable DEBUG on passiveid and check passiveid-mgmt.log and passiveid-api.log.

For TS agent specific troubleshooting, please contact our Firepower support team.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
hslai
Cisco Employee
Cisco Employee

‎06-16-2018 09:35 AM

As you mentioned it unable to connect ISE, please check ISE able to resolve the agent's hostname and reverse lookup the agent's IP address, and verify that ISE listening on that TCP port 9094 (e.g. CLI "show ports). If it is, take a packet capture in between. Also, enable DEBUG on passiveid and check passiveid-mgmt.log and passiveid-api.log.

For TS agent specific troubleshooting, please contact our Firepower support team.

0 Helpful
Customers Also Viewed These Support Documents