Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2378
Views
0
Helpful
3
Replies

HTTP Error 403 Forbidden on Cisco ISE and SCEP RA

jay.kishan
Level 1
Level 1

‎02-26-2014 04:52 AM - edited ‎07-05-2021 12:17 AM

Dear Experts,

We are in process of deploying ISE 1.2 in our environment for BYOD.

The initial step of this process is to configure ISE as an SCEP Proxy and it requires certain configuration on the local CA. We have done all the required configurations on the local CA server.

Now, when we try to connect ISE with the local CA using SCEP RA Profiles, it gives "HTTP Error 403 - Forbidden". The URL we are using is http://ipaddress/certsrv/mscep/mscep.dll.

It seems that the local CA is not letting the ISE access the mscep.dll file. Now I dont understand how to allow ISE to access this file or the url. Please advise if there is any step by step process guide. Although, I have followed the ones from Cisco but it doesn't state how to give ISE the required rights for accessing mscep.dll.

Thanks in advance.

Jay

Labels:
0 Helpful
3 Replies 3

Scott Fella
Hall of Fame
Hall of Fame

‎02-26-2014 04:58 AM

Your better off posting this to the Security AAA forum as they can help you out better since this is related to ISE specifically.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

kaaftab
Level 4
Level 4

‎02-28-2014 02:38 AM

check the following guides

http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/user_guide/ise_user_guide/ise_man_cert.pdf

and if you get any issue try using cisco How to guide that are very useful.

0 Helpful

EvaldasOu
Level 4
Level 4

‎02-28-2014 06:14 AM

Hi Jay,

Please try to follow this guide. 

http://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-software/116238-technote-ise-00.html

I have no idea where you find an example that you need to put a link for "msecp.dll" file.

Try http://ipaddress/certsrv/mscep/

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card