02-16-2018 01:53 AM - edited 02-21-2020 10:45 AM
I'm struggling to understand an issue i am having with my ISE deployment which I'm fairly sure is down to my understanding of Roles/Personas and Services. Currently I have:
2 ISE servers.
Server 1 Personas: Admin,Monitoring Roles Prim (A), PRI (M) Services None.
Server 2 Personas: Policy Service Roles (s) None Services: Session, Profiler, Device Admin.
However in this combination tacacs does not work.
If i put everything on Server 1 Tacacs works fine.
I have of course pointed the switch at Server 2 in the first scenario and Server 1 in the second working scenario.
I thought the policy server would be the server to point the switches at for TACACS+. Is this a correct assumption of how this should work?
All configuration was created on Server 1 the Primary. Nothing entered in Server 2. (web gui not available with just the policy service role it appears.
Thanks in advance
Solved! Go to Solution.
02-16-2018 02:54 AM
An update to this. I've just installed an ISE patch and its all started working as expected.
Server 1: Admin Monitoring
Server 2. Policy Server
02-16-2018 02:54 AM
An update to this. I've just installed an ISE patch and its all started working as expected.
Server 1: Admin Monitoring
Server 2. Policy Server
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: