My previous post “Python and ISE Monitor Mode” was about how to collect access-session information from the switch and use it for endpoint verification. Specifically for...
Continue reading...ISE
Python and ISE Monitor Mode
There are several ways to run ISE (wired) in monitor mode and AuthZ results: dACL, another VLAN, etc. It is always a good idea 🙂 to...
Continue reading...Python: Apply config to multiple interfaces (with the condition)
It is not about range feature:) After my post about how to get into the switch with “not sure” credentials, let’s assume you fixed access and...
Continue reading...Python and Cisco ISE – Collect Endpoints
I like the Cisco ISE GUI interface since 2.4, it’s pretty easy, maybe too many tabs and menus, but once you get the idea – you...
Continue reading...Cisco ISE: Update HotSpot access-code Daily
Several times, I run into the question if there is an option to “automatically” change the guest HotSpot access code at a given interval (lets say...
Continue reading...Cisco ISE Force Guests to accept AUP
Here is how I usually configure NEW-Guest-Endpoints purge policy and options we have. Administration > identity Management > Settings > Endpoint Purge ElapsedDays—Number of days since...
Continue reading...Cisco 802.1X Supplicant and NAD
Every ISE deployment project includes this question from the client: What if dot1x is enabled on the supplicant and not on the NAD and vice verse?...
Continue reading...Cisco ISE Posture Update Issue
Trying to update Posture got the following error message: “Remote address is not accessible. Please make sure update feed url, proxy address and proxy port are...
Continue reading...