I have this issue on both a Windows 10 computer and a MACbook Pro running Sonoma 14.4.1. The problem initially appeared on teh Windows box, my secondary device, but just appeared on my Macbook. WE run ISE 3.1 and FTD 7.0.6 I tried to connect Sec...
We are replacing Viptela 100B with ISR1100X and I wanted to go to all Cisco IOS on our edge routers. I am currently running 17.05.01 on the 1100X devices we have. I just received 6 ISR1100X with Viptela code loaded and was going to switch to ...
I have been asked by our security group to see if it is possible to check for minimum Windows version on a PC. This is for contractor PCs so we have no control over the PC. Also can we check the same group of PCs for security patches using ISE...
We are running ISE 3.1 patch 4 and rolling out wired connections with posture checking. the issue we are seeing is with computers on 24x7 , we are a manufacturing plant. With the lease setting at 24 hrs, and the the posture recheck at 12 hours,...
We have ISE authentication on VPN, when successful ISE returns the session timout, idle timeout and the Group Policy . The Group Policy configured on the FMC also sets the session and idle timeouts. We appear to be getting mixed results, some...
It could be either one. If the MFA talks to your phone then the MFA system could have the wrong #, wrong username, or the app is not setup correctly on the phone.
Are you using MFA? If so the initial authentication would work, but the overall would be a reject if the MFA device/system rejected it. In my experience the logs would be showing successful login, but the user would get a fail.
The reassessment is set to 12 hours, the general setting is 24. The AD group is looking at a possible solution, they have found that the ISE posture services can be stopped/started and that causes a re-scan that appears to keep the PC connected. They...