WebApp: Cisco ISE-Python-Flask
My previous post “Python and ISE Monitor Mode” was about how to collect access-session information from the switch and use it for endpoint verification. Specifically for MAB-only devices – add...
February 25, 2020
Tagged: ISE
Python and ISE Monitor Mode
There are several ways to run ISE (wired) in monitor mode and AuthZ results: dACL, another VLAN, etc. It is always a good idea 🙂 to run ISE in monitor...
February 21, 2020
Python: Apply config to multiple interfaces (with the condition)
It is not about range feature:) After my post about how to get into the switch with “not sure” credentials, let’s assume you fixed access and configured devices with TACACS...
January 31, 2020
Python and Cisco ISE – Collect Endpoints
I like the Cisco ISE GUI interface since 2.4, it’s pretty easy, maybe too many tabs and menus, but once you get the idea – you are good to go....
January 28, 2020
Cisco ISE: Update HotSpot access-code Daily
Several times, I run into the question if there is an option to “automatically” change the guest HotSpot access code at a given interval (lets say daily) and I came...
September 26, 2019
Cisco ISE Force Guests to accept AUP
Here is how I usually configure NEW-Guest-Endpoints purge policy and options we have. Administration > identity Management > Settings > Endpoint Purge ElapsedDays—Number of days since the object is created....
April 12, 2019
Cisco 802.1X Supplicant and NAD
Every ISE deployment project includes this question from the client: What if dot1x is enabled on the supplicant and not on the NAD and vice verse? Supplicant – Configured, NAD...
April 3, 2019
Cisco ISE Posture Update Issue
Trying to update Posture got the following error message: “Remote address is not accessible. Please make sure update feed url, proxy address and proxy port are properly configured”. Solution:Check cisco.com...
March 23, 2019