Hi Guys,We're having issues with our RADIUS authentication. We just keep getting login failed when trying to connect to our VPN. We've run an authentication test in ASDM and that works fine so not sure where our issue lies. I've pulled out our config...
hello all ,recently i tried to configure VPN site to site with certificate authentication type, i got the certificate signed by a third party autority , and when i did the debugs i got this log :CRYPTO_PKI: bitValue of KEY_USAGE = a0PKI[7]: CRYPTO_PK...
I am trying to get my head around this to make sure i've understood this correctly. Hopefully someone will be able to clarify it for me. 1. As per the below image, I can see that Balanced and security is enabled as a default for NAP in the default...
Using the Api for Authenticated users list : https://{ISE-MNT}/admin/API/mnt/Session/AuthList/{START_TIME}/{END_TIME}I am able to fetch data of active sessions that are connected throughout the time period of 30 days whereas I also want to fetch d...
We have an export repository configured for our Radius/Tacacs Data under System/Maintenance/Operational Data Purging which leads ISE to write many small .tar.gpg files on our repository server.I would now like to run reports from this data but I am n...
I have almost completed the build of the 3.2, what I observe is the following:- in 2.7, the "Sponsor portal URL" is the classic 443 (the link that ISE offers to quickly check it out), in the setup page TCP 9445 is specified. Hence ISE sends the clien...
Hello,In our company we have two sites first we work on it and the second far from us 700 km usually I mange second site routers via SSH but recently we lost access so our engineer moved to the second site and remove all users & passwords from rom-mo...
Hello, I'm trying to configure the switch so the ISE can trust the switch. here's the topology. [ISE IP: 172.16.10.25] I'm using this config in the switch: aaa new-modelradius server ISE1address ipv4 172.16.10.25 auth-port 1645 acct-port 1646 key 0 ...
Hi all,I am currently in the process of implementing ASA VPN certificate authentication with Cisco ISE and DUO MFA. However, I have encountered an issue where DUO seems unable to handle authentication without a password.As we are using certificate au...
Our company have purchased Cisco Guard XT and Detector XT for test purpose. But, we can't know the initial access password of these devices.Cisco documentation is telling that "Type admin to answer the user name. Type in the password supplied by Cisc...
Hi There, It seems the Duo WinLogon installer disables other Credential Providers during installation. We're encountering problems when other credential component apps are patched they take precedence over Duo. Is there a task we can perform to resto...
Bonjour à tous, Je suis sur un projet d'intégration de Cisco DUO pour une banque libanaise, j'ai déjà réussi à configurer le MFA pour fortigate SSL VPN, maintenant j'ai un problème pour configurer le MFA pour une solution PAM qui est "Safeguard for ...
The compliance column shows Released Entitlement for certain license types I just added. Just checking with the experts in the Community about what does 'Released Entitlement' mean .. is it that I am currently not consuming any licenses of this type,...
Buenas tardes, Solicito un apoyo al respecto, tengo un cisco ISE el cual fue instalado en el 2018 con una version 2.3, lo actualizamos cada año hasta dejarlo en cierta version que no admitía las licencias, decidimos volver a la version 2.7 donde er...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: