In ISE 1.2 below message is showing when we do a web posture update either manual or automatic.
"Remote address is not accessible. Please make sure update feed url, proxy address and proxy port are properly configured".
It was working fine for long time and all of a sudden it stopped working
and no changes have made on the network side.
https://www.cisco.com/web/secure/pmbu/posture-update.xml is working in the browser.
Few customers had reported the same. Boxes are installed with latest patch version 7.
We can upload the updates through offline mode.
I have experienced the same issue. Both the posture update feed URLs
give the same error, when the ISE boxes try to do the updates. But these URLs are accessible from outside.
A TCP dump taken from a box shows as "Certificate unkown Alert " (when it tries to update) for the received certificate from the other end. Then the ISE box sends a (FIN,ACK) and terminates the session.
The relevant pcap file is attached