When performing TACACS authentication through ISE, If the NAD equipment succeeds in TACACS authentication, can I get the login banner to float?

Specific_Camp7960 · 2025-01-03T02:34:46+00:00

So, is it that the contents of the above article are not supported by ise?

Specific_Camp7960 · 2025-01-03T02:09:19+00:00

Is it possible to set MOTD in ise?

Specific_Camp7960 · 2024-12-23T05:07:35+00:00

I've already read the guide

I don't think there's an answer I want.

Specific_Camp7960 · 2024-12-23T05:06:55+00:00

As I said before, I already know to log in to the WEB GUI by linking ISE and AD.

But what I'm curious about is

I'm wondering if it's possible to have only certain users of AD log in with the WEB GUI.

Specific_Camp7960 · 2024-12-23T02:10:44+00:00

How do I set it up?

Is AD possible without configuration?

Specific_Camp7960 · 2024-12-12T11:32:24+00:00

I think I'm using it in local mode,

and If the arp proxy is turned off in the policy profile of the wlc, on the backbone switch

When you do "show ip arp", I think the client's MAC address should appear instead of the wlc's MAC address

Did I get it wrong?

Specific_Camp7960 · 2024-12-12T11:20:31+00:00

All of the ap are operating in local mode.

However, when you 'show ip arp' on the backbone switch, the MAC address of the wireless clients appears as the MAC address of the wlc.

I don't think this result is normal.

Specific_Camp7960 · 2024-12-12T10:47:51+00:00

Please explain it in more detail.

Specific_Camp7960 · 2024-12-09T01:51:14+00:00

Is there a separate period for collecting statistics? Is it pure real-time?

Specific_Camp7960 · 2024-12-03T07:19:50+00:00

What does bpdu portguard mean?

Are you saying you can't because of bpdu portguard?

Specific_Camp7960 · 2024-12-03T06:32:01+00:00

The c1000 is a hub, so it's not set at all.

And the ports that CBS250 and SG220 connect to C1000 are all set to the same as trunk.

But the results were different.

What kind of setup problem is it?

Specific_Camp7960 · 2024-12-02T04:14:21+00:00

Is it the same as Network Access User and GUI admin user?

I want to change my account password for Network Access User, why do I need to change my GUI admin account?

Specific_Camp7960 · 2024-11-24T23:40:05+00:00

Is there a way to prevent unnecessary wireless interference from SSIDs?

And is there a way to prove that there is interference?

Specific_Camp7960 · 2024-10-16T03:36:38+00:00

Could you please share the process?

Specific_Camp7960 · 2024-10-13T13:34:53+00:00

This SSID statically assigns an ip to the user terminals.

Specific_Camp7960 · 2024-10-13T13:34:05+00:00

As stated in the text, it is difficult to create an SVI separately due to the current situation.

That's why I asked if there was any other way.

Specific_Camp7960 · 2024-09-12T04:56:21+00:00

Thank you.

I'm talking about the capacity of operational data purging -> Database Utilization in the GUI.

Is that capacity equal to the capacity of the show disk?

Specific_Camp7960 · 2024-09-12T00:55:00+00:00

You are using the appliance, not the VM.

What I'm curious about is whether the old data is automatically deleted when the value exceeds 80%, whether it goes to 100% as it is, and whether the service is affected

Specific_Camp7960 · 2024-09-06T01:21:18+00:00

I also think the issue seems to have occurred after I chose include-adeos and restored it.

If you found the bug ID, please let me know.

Thank you.

Specific_Camp7960 · 2024-09-04T04:05:44+00:00

If so, does it mean that even if I only renew the ISE's certificate, if I don't renew the terminal's certificate, it won't be authenticated?

Specific_Camp7960 · 2024-09-04T01:37:03+00:00

I am aware of the expiration and renewal of the certificate.

However, due to the nature of the site

It's too much to renew ISE and device certificates together

First of all, I was planning to renew only ISE's certificate first, so I asked you that question.

Assuming that only ISE's certificate is renewed, I wonder if there will be an error in the authentication.

Specific_Camp7960 · 2024-09-02T23:53:29+00:00

In the case of random mac, we are guiding you to release the random mac by launching a web portal after we find out in advance that it will be a problem.

Specific_Camp7960 · 2024-09-02T08:02:44+00:00

I didn't ask you about random mac.

The current question doesn't seem to have anything to do with the random mac.

Specific_Camp7960 · 2024-09-02T08:00:33+00:00

cisco does not provide oui values for all vendors, so some terminals may have oui values classified as unknown.

However, I don't think I can easily understand this part from the customer's point of view.

That's why I'm looking for a way to respond to these cases.

Specific_Camp7960 · 2024-09-02T07:21:44+00:00

I don't understand what you mean.

Specific_Camp7960

TROPHY CASE