User Info

Welcome, Guest. Please login or register.
Did you miss your activation email?

Recent Posts

Pages: 1 2 3 [4] 5 6 ... 10
Routing and Switching / RS0124: SW1 configuration
« Last post by tomimma on June 13, 2019, 02:27:58 PM »

I understand that the video is released in 2018, and Cisco is aggressively releasing updates, unbelievably so far...

So, this question may be none sense. However, is this mandatory to configure SW1 by CLI with each command? DNA Center can't do this yet?

I feel like what is the point to using DNA Center, if this is necessary? in order to avoid complicated CLI setting in each device?...
Security / Re: EAP-FAST along with posture
« Last post by crismonilla on April 29, 2019, 11:33:12 PM »
what is you switch model and version? please share your policy in ISE
Security / Re: ISE 2.3 CWA redirection issue
« Last post by crismonilla on April 29, 2019, 11:30:14 PM »
I also have the same problem for wired posture redirection. My ISE version is 2.1 patch 5 and c9300 version everest 16.6.4a. below my set up

Security / Problem: FLEXVPN with dVTI and assign ip address authomatic from hub
« Last post by a_hamidreza on April 27, 2019, 02:07:28 PM »

I configured my hub and spoke router like video "SEC0257 - FlexVPN L2L with Dynamic Virtual Tunnel Interface (DVTI)"

everything works fine but the ip address of spoke router tunnel dont show in routing table static and i cannot ping the tunnel ip address and then i cannot run bgp routing protocol

i attach the configuration of hub and spoke router.

Please help me.
Security / Re: EAP-FAST along with posture
« Last post by MC on April 02, 2019, 09:29:34 PM »
If you switch to native supplicant, does everything work the way it should?
Security / EAP-FAST along with posture
« Last post by ansar471 on March 31, 2019, 01:08:22 AM »

I am trying to authenticate my domain PC's/users with ISE and am using Anyconnect 4.2 with eap-fast user and machine authentication.

Everything was working with window 7 until i re-image two nodes from 1.4 to 2.2 and restore ISE configs. I have window 7 which is in process to upgrade to window 10.

1. After signing out window 10 machine authentication is happening and getting right result but after sign in with domain user posture is not working after looping its saying no policy server found. For it to work i have to click on NAM profile once more to re authenticate and in that case its starting its posture check.

2. Some machines are not even authenticating even i did restart, sign out. No session is showing on switch-port.
3. Some machine on authentication getting IPV6 logo only because we are not using IPv6 in the environment.
Security / Re: ISE 2.1 self signed certificates - Renew
« Last post by MC on March 09, 2019, 11:53:07 AM »
When you make changes to the cert, ISE service  always need to be restarted. Although you should be prompted that it will happen automatically, if you weren't, you might want to try to restart manually. But before you do that, try to clear browser cache to make sure the copy of cert you see was the browser cache copy.
Routing and Switching / Re: SDA question (On behalf of Tayo)
« Last post by MC on March 09, 2019, 11:49:12 AM »
Actually no. The purpose of LAN automation is that you do not need to perform any config on the device. In fact, the switch cannot have any config on it for the auto-provisioning to work. A brand new switch will get info from the seed switch DHCP server, automatically added to DNAC, and DNAC will push out the rest of config.
Routing and Switching / Re: SDWAN Demo License
« Last post by MC on March 09, 2019, 11:44:19 AM »
vManage does not come with any license be default. For lab use, you might be able to get a lab S/N file from your Cisco contact but it might be locked down to only organization name.
Security / ISE 2.1 self signed certificates - Renew
« Last post by Kojot on February 27, 2019, 09:31:14 AM »
hi all!

I do not find anything in any manulas regarding certificate on ISE server and renew option in self-signed cert(only import the new one is described). Currently I do not use  any internal or external CA. current self-signed cert will be not valid in few weeks and I would like to extend it for next year. When I did a change and put in renew field 1 year - I see that inside system certifcates the valid date is changed .the same after export and import that new one to Trusted certicates store on ISE Server. but when I logged in i see that in browser old certificates still exist. Is it neccessary to restart the ISE application ?
Ise didnt restart after i save certificate with new extended Valid date.
I have a distributed deployment 2xAdmin 2 x monitor 2x PSN

thx for help !!
Pages: 1 2 3 [4] 5 6 ... 10
SimplePortal 2.3.7 © 2008-2023, SimplePortal