1.3 the ISE and multiple licensing requirements

Similar Questions

• 1.2 of the ISE and iPEP required certificates

  Hello

  For version 1.1.x of ISE, there are a few constraints on the certificates used for iPEP and Admin:

  Both EKU attributes must be disabled, if the two attributes, EKU are disabled in the certificate of Inline Posture, or the two attributes, EKU must be activated, if the server attribute is enabled in the certificate Postur Inline.

  • [http://www.cisco.com/en/US/products/ps11640/products_configuration_example09186a0080bea904.shtml]
  • The same applies for iPEP ISE 1.2? For ISE 1.2 User Guide and Setup Guide material does not mention anything about EKU and the attributes of specific certificate...
  • Any thoughts?
  • Thank you
  • Octavian

  Validation of EKU has been removed in version 1.2

  "If you configure ISE for services like Inline Policy Enforcement Point (iPEP), the model used to generate the ISE server identity certificate must contain attributes to authenticate client and server if you use ISE Version 1.1.x or earlier." This allows the admin and inline nodes to mutually authenticate each other. The validation of the EKU for iPEP was removed in ISE Version 1.2, which makes this less relevant requirement. »

  Source:

  http://www.Cisco.com/en/us/products/ps11640/products_tech_note09186a0080bff108.shtml

• 0xC004F063 bios of the computer is missing license required

  Hello

  I reinstalled Windows 7 a bit more than a month, and then a few days ago I got messages saying my version is not valid, and when I followed the steps recommended to enter the product key I got the message from 0xC004F063 saying: lack me a license required.

  I have no sticker on my laptop (HP ProBook) who was one of the many bought by my company.

  The product key, I got through an online diagnosis service.

  Here's my Diagnostic report.

  Thanks for your help.

  Ian

  Diagnostic report (1.9.0027.0):
  -----------------------------------------
  Validation of Windows data-->

  Validation code: 50
  Code of Validation caching online: 0x0
  Windows product key: *-* - 788W3 - H689G-6P6GT
  The Windows Product Key hash: yr8OHoeXhbT4dc6MxGYjdAStSPY =
  Windows product ID: 00371-OEM-8992671-00008
  Windows product ID type: 2
  Windows license Type: OEM SLP
  The Windows OS version: 6.1.7601.2.00010100.1.0.048
  ID: {FFEC2638-58DB-4F3B-AC7F-CCCA7571B408} (3)
  Admin: Yes
  TestCab: 0x0
  LegitcheckControl ActiveX: N/a, hr = 0 x 80070002
  Signed by: n/a, hr = 0 x 80070002
  Product name: Windows 7 Professional
  Architecture: 0x00000000
  Build lab: 7601.win7sp1_gdr.130828 - 1532
  TTS error:
  Validation of diagnosis:
  Resolution state: n/a

  Given Vista WgaER-->
  ThreatID (s): n/a, hr = 0 x 80070002
  Version: N/a, hr = 0 x 80070002

  Windows XP Notifications data-->
  Cached result: n/a, hr = 0 x 80070002
  File: No.
  Version: N/a, hr = 0 x 80070002
  WgaTray.exe signed by: n/a, hr = 0 x 80070002
  WgaLogon.dll signed by: n/a, hr = 0 x 80070002

  OGA Notifications data-->
  Cached result: n/a, hr = 0 x 80070002
  Version: N/a, hr = 0 x 80070002
  OGAExec.exe signed by: n/a, hr = 0 x 80070002
  OGAAddin.dll signed by: n/a, hr = 0 x 80070002

  OGA data-->
  Status of office: 101 non-active
  Microsoft Office XP Professional - 101 non-active
  Microsoft Publisher 2002-100 authentic
  OGA Version: N/a, 0 x 80070002
  Signed by: n/a, hr = 0 x 80070002
  Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_3E121E02-372-80004005_3E121E02-322-80004005

  Data browser-->
  Proxy settings: N/A
  User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
  Default browser: C:\Program Files\Google\Chrome\Application\chrome.exe
  Download signed ActiveX controls: fast
  Download unsigned ActiveX controls: disabled
  Run ActiveX controls and plug-ins: allowed
  Initialize and script ActiveX controls not marked as safe: disabled
  Allow the Internet Explorer Webbrowser control scripts: disabled
  Active scripting: allowed
  Recognized ActiveX controls safe for scripting: allowed

  Analysis of file data-->

  Other data-->
  Office details: {FFEC2638-58DB-4F3B-AC7F-CCCA7571B408}1.9.0027.06.1.7601.2.00010100.1.0.048x 32*-*-*-*-6P6GT2S-1-5-21-540487187-2398283291-2519360910Hewlett-PackardHP ProBook 4530 sHewlett-Packard68SRR worm00371-OEM-8992671-00008. F.0920110513000000.000000 + 00067BA3707018400FE08090409Ulaanbaatar Time(GMT+08:00) Standard03HPQOEMSLIC-MPC101101Microsoft Office XP Professional1048779296E9955B0AyjwuUHxYRPbfJSuP2 RJ57ykc plus54186-OEM-1792772-713524100Microsoft Publisher 200210x6MiqtZDRxsTf3nd8UAOAELN008 =54197-OEM-1691301-633524 A381E7A6CD87B70

  Content Spsys.log: 0 x 80070002

  License data-->
  The software licensing service version: 6.1.7601.17514

  Name: Windows 7 Professional edition
  Description: operating system Windows - Windows (r) 7, channel OEM_SLP
  Activation ID: 50e329f7-a5fa-46b2-85fd-f224e5da7764
  ID of the application: 55c92734-d682-4d71-983e-d6ec3f16059f
  Extended PID: 00371-00178-926-700008-02-2057-7601.0000-1142014
  Installation ID: 021432840206793536407555682430260595568982975194209982
  Processor certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
  The machine certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
  Use license URL: http://go.microsoft.com/fwlink/?LinkID=88341
  Product key certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
  Partial product key: 6P6GT
  License status: Notification
  Notification reason: 0xC004F063.
  Remaining Windows rearm count: 3
  Time to trust: 24/04/2014-10:44:07

  Windows Activation Technologies-->
  HrOffline: 0x00000000
  HrOnline: 0xC004C533
  Beyond: 0 x 0000000000000000
  Event timestamp: 4:24:2014 10:22
  ActiveX: Registered, Version: 7.1.7600.16395
  The admin service: recorded, Version: 7.1.7600.16395
  Output beyond bitmask:

  --> HWID data
  Current HWID of Hash: MAAAAAEAAQABAAEAAAACAAAAAwABAAEAJJRKDIaqSnEqcLTA/p5cw2ajFLxcci5z

  Activation 1.0 data OEM-->
  N/A

  Activation 2.0 data OEM-->
  BIOS valid for OA 2.0: Yes
  Windows marker version: 0 x 20001
  OEMID and OEMTableID consistent: Yes
  BIOS information:
  ACPI Table name OEMID value OEMTableID value
  APIC HPQOEM 167C
  FACP HPQOEM 167C
  HPET HPQOEM 167C
  MCFG HPQOEM 167C
  ASF! HPQOEM 167C
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci
  SLIC SLIC-MPC HPQOEM
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci

  I own a ProBook's product key on the COA sticker in the battery compartment, look here.

  Try the following:

  Click Start, right click on computer

  Click on properties

  Scroll down to the Windows Activation

  Click on the link 'change product key '.

  Enter the product key located on the COA sticker attached to the bottom of your laptop or in the battery compartment. Click next to activate via the Internet.

  COA certificate of authenticity:

  http://www.Microsoft.com/howtotell/content.aspx?PG=COA

  ??

  What is the certificate of authenticity for Windows?

  http://Windows.Microsoft.com/en-us/Windows7/what-is-the-Windows-certificate-of-authenticity

• 1.2 of the ISE and made maximum PSN supported in my Persona config

  Hello people, I am setting up a way large-scale distributed of ISE and I was wondering if anyone could tell me what the maximum number of PSN is allowed in this configuration.   I was reading through an older training document with version 1.1 and suggested 5, that's why I wonder if the specs changed on 1.2 but I can't find them anywhere to practice.

  I have a large virtual machine running the MAIN admin character who is also secondary to my report & follow-up in my main data centre.

  In another State (bound to 10G) is another large VM acting as my character high school admin with primary oversight & reports.

  Across several States I want to have multiple Ssnp through geographic patterns of each State, but I don't know if I can put across enough with my current version of 1.2 and my persona config Ssnp listed above.    I need about 12 to 15 Ssnp.

  I was wondering if I need two VMs more out of my control as a node in DC1 and secondary surveillance in DC2 for more extensibility PSN.

  Any help would be greatly appreciated.

  -Thank you

  As Marvin suggested, I would look at using 1.3 at this point, unless you have any specific concerns of this version and I really want to stay with 1.2. That being said, here are my recommendations/comments:

  -Two v1.2 and v1.3 fits in fact up to 40 knots PSN

  -If none of the nodes of your PSN will be put in the same place and are layer 2 adjacent I recommend putting them in a group node and behind a load balancer. If you do not have a load balancer, I would always put them in a node group. At this time a node group can have up to 10 PSN

  -If you have 10-15 knots PSN then you should spend 2 nodes for specifically for the character of monitoring

  -The period of maximum round trip between all nodes must not exceed 200 ms

  For more information, you can always reference the "Network deployment" section in the installation guide material for ISE:

  v1.3

  http://www.Cisco.com/c/en/us/TD/docs/security/ISE/1-3/installation_guide/b_ise_InstallationGuide13/b_ise_InstallationGuide12_chapter_00.html

  v1.2

  http://www.Cisco.com/c/en/us/TD/docs/security/ISE/1-2/installation_guide/ise_ig/ise_deploy.html

  Thank you for evaluating useful messages!

• 1.3 of the ISE and NAC

  I have a client that 5508 WLCs runs through the area, and I'm catching IEEE802.1x authentication for the enterprise WLAN and WebAuth for WLAN of comments... they PSK now :(

  They have ad and ISE and NAC great interest, so my immediate thoughts are to integrate ISE AD and use ISE as RADIUS server for .1x on the WLC. Then use the WLC and ISE do WebAuth for comments... It's all of the standard stuff, but it gives the background.

  Now, we come to the interesting bit... they want to run BYOD. They are involved in the financial markets, so the BYOD must be tightly controlled. They ask on ISE coupled with the NAC, but I am not convinced that I need the NAC since the arrival of the ISE1.3. Of course, I will examine three (min) SSID, corporate knowledge, comments and BYOD, just logically distinct. I have nothing that ISE 1.2 cannot press the company and comments but BYOD must full profiling and reclamation prohibition or device before access to the net.

  Someone at - he comments or suggestions? Is ISE 1.3 enough NAC-like that I don't need more, or if this is not the case, what additional benefits does that ISE can support

  Thanks for your advice/comments/experiences

  Jim

  Hi Jim -.

  Version 1.3 offers an integrated PKI and a significantly improved services reviews experience. The internal PKI is nice if the customer does not have a PKI solution in place. Don't forget however that the PKI ISE internal can only issue certificates to BYOD devices which have boarded through the ISE BYOD "flow", you cannot use the ISE PKI to issue certificates to computers in the domain.

  With regard to the NAC: you need to specify exactly what is needed here. If you were to make "posture assessment" then ISE can do for machines based on Windows and OSX. You can check for things like: A / V, a/s, status of the firewall, Windows hotfixes. If you want to make the posture on mobile devices, so you will need to integrate ISE with MDM (mobile device management) solution such as: Airwatch, Mobile, Extend360 iron, etc. ISE may question the MDM for things like: the device is protected with a PIN, is the rooted device, is the encrypted device, etc.

  I hope this helps!

  Thank you for evaluating useful messages!

• 1.2 of the ISE and ACL with several ports

  When you create a DACL for my groups I used the syntax "permit tcp any 192.168.20.0 0.0.0.255 eq 22 443" for one of my acl within the DACL and the validated syntax checking. When I pushed my groups too, it worked but I have heard that this type of port several ACL in ISE is not supported. Does anyone know if this is accurate?

  You can implement several DACL to control access and the sound works perfectly with ISE

  Note the useful messages *.

• Basic question about the selection of the AP and multiple channels

  I have about 10 PA (Aironet 1240 G) intended to be deployed one of my floors of office. We examined a diagram of the floor and made sure that we ordered enough to completely saturate the ground with wireless coverage. There are a few AP which are probably only 50' with each other. It's actually a bit exaggerated.

  I put a base on the switch configuration so that there are two different SSID on the access point (one for a production of WLAN and the other for a WLAN comments). Each SSID is associated with a VLAN different.

  I want to know is this what to do on the channels for the AP? Each access point will be independently configured and controlled.

  I understand that there is a way to control which channels each AP uses, but I'm not familiar with the controls or best practices for the configuration of the AP

  Can I do something like make sure that each access point uses a different channel than its nearest adjacent neighbors? Someone would mind sharing what is the command to do it, and where it is applied?

  I have read through some archives and saw people talk to set "no bunk channels" and to configure them to use 1,6,11 channels. I guess I don't understand what is meant by there.

  Manually define you an access point to channel 1, then set his neighbour to use 6 and another neighbor to use 11, and then you who stay?

  What is the worst of the scenarios on what happens when you have no AP too close to the other located on the same channel?

  It is a pleasure to read through the documentation if someone wouldn't mind pointing me to it. I'm still trying to understand the concept, and then I should be able to understand the documentation that came with the AP.

  Thank you for your help.

  If your stand-alone Access Points. If it was a deployment of Comptrollership, in fact to dynamically manage the channels for you.

  But what you really want to do, is you see APs do something like this:

  (imagine each number represents an access point, and it channel)

  1 6 11 1

  6 11 1 6

  11 1 6 11

  1 6 11 1

  It is a conceerne configuration guide. I think he has a small section on the channel assignment. If you do this manually, I think that you specify the actual frequency used in the CLI instead of the channel number.

  http://www.Cisco.com/en/us/docs/wireless/access_point/12.4_3g_JA/configuration/guide/s43rf.html

  So the CLI under the Dot11Radio0 you would do something like 'channel 2412' for channel 1... 2437 for 6, 2462

  for 11...

  If you have APs side by side on the same channel, you are likely to have clients interfere between them.

• I downloaded the program and now it requires a serial number 6 and mine has much more than that. Help!

  I downloaded the program and now he asks me a serial number number 6. My serial number has about 20 numbers. Help! What numbers should I use?

  Serial numbers are 24 issues.  They are grouped as six sets of four numbers, so the six boxes you will each take 4 numbers.  If you have only 20 so you're either missing a set of four or not looking for a serial number.

• Installation of the MEM and VMware licenses

  Hello group,

  If a client vSphere 5.x standard, that is not business or business plus. Can the customer install the EQL MEM module without breaking any rule VMware licensing?

  Hello

  Joerg is correct, that VMware requires a business or company license + to activate the feature.  Joerg has mentioned in the past, he has seen work on other licenses, but I can't bring it to work properly.  Especially after you restart the node of ESXi.

  It will show as enabled, but the behavior under is basically identical to FIXED paths.

  If the alternative is to use VMware Round Robin and change by way of 1000 to 3/o.   Run this command to the shell ESXi.  Restart the nodes.

  esxcli storage nmp ATAS add s "VMW_SATP_EQL" - M "100th-00" PEI "VMW_PSP_RR" o "IOPS / s = 3" "". "

  In addition, here is a link that covers other best practices for ESXi with storage EQL.

  en.Community.Dell.com/.../20434601.aspx

  Kind regards

• A few questions during the consideration of the unique and professional license

  Hi all

  I am creating e-brochures for funiture products. But I have some questions when I choose a simple license or professional.
  Can anyone can help and answer to sub questions. Thank you

  1. for a single license, this means that I can download only 1 .folio for the application? Given that I intend to create a monthly e-brochure, if I downloaded a problem for Nov, can I upload another question for Dec? Will be that the application displays two issues?

  2 purchase guides, says Professional license includes free 5000 (annual) or 250 (monthly) .folio with the first year of service. This means that I can only have 5000 questions in the application for a year? or I can download only 5000 TIMES (which means that if I update/overwrite there is a question, I downloaded 2/5000 times)

  3. can I change the name of the app if I bought the single license?

  4. can I download the same application on the android market with a single license?

  5. is at - it offers Adobe upgrade plan? which means that I can use only permits first, if I think it's not enough, I can go from the plan to the Professional license.

  I am very confused with the purchase of guideline comparison. My goal is to create a number monthly e-brochures. Any suggestion to choose the appropriate license? Thank you

  1. with the single license edition DPS, you can create built-single edition app. If you plan to create several Folio app, then you should go with DPS Professional edition.

  2. it means you get complimentry 5000 downloads in DPS annual Pro and 250 per month in the case of DPS Pro monthly. You can have unlimeted number of folios, and you can update your folio number n times. It only means that you get 5000 or 25o parmois downloads in your POS with DPS Professional edition.

  3. Yes, you can change the name of the application.

  4 Currenlty with DPS single edition, you cannot create built-single edition app. DPS Professional edition is required to create an application for Android market.

  5 no.

  According to you need, I suggest you go with DPS Professional edition.

• This copy of windows is not genuine - 0xC004F063 bios of the computer is missing license required

  I had a friend install a SSD on my laptop about a month ago, and my Windows 7 installation worked fine. But yesterday, I suddenly had this error message saying that my copy of windows is not genuine. Can someone help me with this?

  It is the diagnostic report:

  Diagnostic report (1.9.0027.0):
  -----------------------------------------
  Validation of Windows data-->

  Validation code: 50
  Code of Validation caching online: 0x0
  Windows product key: *-* - 73CQT - WMF7J-3Q6C9
  Windows product key hash: RmurcM3ZxzWyfEP9WtPUJw = + KaFG
  Windows product ID: 00359-OEM-8992687-00010
  Windows product ID type: 2
  Windows license Type: OEM SLP
  The Windows OS version: 6.1.7600.2.00010300.0.0.003
  ID: {68877C01-F655-48DC-BA8F-FC614A29BF77} (1)
  Admin: Yes
  TestCab: 0x0
  LegitcheckControl ActiveX: N/a, hr = 0 x 80070002
  Signed by: n/a, hr = 0 x 80070002
  Product name: Windows 7 Home Premium
  Architecture: 0 x 00000009
  Build lab: 7600.win7_gdr.130104 - 1435
  TTS error:
  Validation of diagnosis:
  Resolution state: n/a

  Given Vista WgaER-->
  ThreatID (s): n/a, hr = 0 x 80070002
  Version: N/a, hr = 0 x 80070002

  Windows XP Notifications data-->
  Cached result: n/a, hr = 0 x 80070002
  File: No.
  Version: N/a, hr = 0 x 80070002
  WgaTray.exe signed by: n/a, hr = 0 x 80070002
  WgaLogon.dll signed by: n/a, hr = 0 x 80070002

  OGA Notifications data-->
  Cached result: n/a, hr = 0 x 80070002
  Version: N/a, hr = 0 x 80070002
  OGAExec.exe signed by: n/a, hr = 0 x 80070002
  OGAAddin.dll signed by: n/a, hr = 0 x 80070002

  OGA data-->
  Office status: 109 n/a
  OGA Version: N/a, 0 x 80070002
  Signed by: n/a, hr = 0 x 80070002
  Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

  Data browser-->
  Proxy settings: N/A
  User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
  Default browser: C:\Program Files (x 86) \Mozilla Firefox\firefox.exe
  Download signed ActiveX controls: fast
  Download unsigned ActiveX controls: disabled
  Run ActiveX controls and plug-ins: allowed
  Initialize and script ActiveX controls not marked as safe: disabled
  Allow the Internet Explorer Webbrowser control scripts: disabled
  Active scripting: allowed
  Recognized ActiveX controls safe for scripting: allowed

  Analysis of file data-->

  Other data-->
  Office details: {68877C01-F655-48DC-BA8F-FC614A29BF77}1.9.0027.06.1.7600.2.00010300.0.0.003x 64*-*-*-*-3Q6C900359-OEM-8992687-000102S-1-5-21-1547156946-2243871481-593275757Hewlett-PackardHP ProBook 5320 mHewlett-Packard68AFU worm. F.2020110916000000.000000 + 00093B90600018400FC08130409Romance Standard Time(GMT+01:00)03HPQOEMSLIC-MPC109

  Content Spsys.log: 0 x 80070002

  License data-->
  The software licensing service version: 6.1.7600.16385

  Name: Windows 7 HomePremium edition
  Description: operating system Windows - Windows (r) 7, channel OEM_SLP
  Activation ID: d2c04e90-c3dd-4260-b0f3-f845f5d27d64
  ID of the application: 55c92734-d682-4d71-983e-d6ec3f16059f
  Extended PID: 00359-00178-926-800010-02-2067-7600.0000-0842013
  Installation ID: 004832361196076674551954651255134730168343993681566451
  Processor certificate URL: http://go.microsoft.com/fwlink/?LinkID=88338
  The machine certificate URL: http://go.microsoft.com/fwlink/?LinkID=88339
  Use license URL: http://go.microsoft.com/fwlink/?LinkID=88341
  Product key certificate URL: http://go.microsoft.com/fwlink/?LinkID=88340
  Partial product key: 3Q6C9
  License status: Notification
  Notification reason: 0xC004F063.
  Remaining Windows rearm count: 3
  Trust time: 25/03/2013 20:06:48

  Windows Activation Technologies-->
  HrOffline: 0x00000000
  HrOnline: 0x00000000
  Beyond: 0 x 0000000000000000
  Event timestamp: 3:9:2013 17:02
  ActiveX: Registered, Version: 7.1.7600.16395
  The admin service: recorded, Version: 7.1.7600.16395
  Output beyond bitmask:

  --> HWID data
  Current HWID hash: MAAAAAAAAgABAAEAAAACAAAAAwABAAEA6GH0rrhqiIJcr1gH7CkE1qgoPPxsq1xd

  Activation 1.0 data OEM-->
  N/A

  Activation 2.0 data OEM-->
  BIOS valid for OA 2.0: Yes
  Windows marker version: 0 x 20001
  OEMID and OEMTableID consistent: Yes
  BIOS information:
  ACPI Table name OEMID value OEMTableID value
  APIC HPQOEM 149 B
  FACP HPQOEM 149 B
  HPET HPQOEM 149 B
  MCFG HPQOEM 149 B
  ASF!            HPQOEM 149 B
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci
  SLIC SLIC-MPC HPQOEM
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci
  SSDT HPQOEM SataAhci

  elineesprit

  The problem is that your system cannot properly read your BIOS SLIC table - maybe it's a minor problem, or it is possible you have a counterfeit installation.

  Please try first to re-create the license store.

  Re-create the license store

  Go to start > all programs > Accessories

  Right-click on command prompt and select run as administrator - accept the UAC prompt

  Run the following commands in the command prompt window, press enter at the end of each

  net stop sppsvc

  (expect that the service is stopped before entering the following lines)

  CD %windir%\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform

  Tokens.bar tokens.dat REN

  net start sppsvc

  slui.exe

  After a few seconds, the Windows Activation dialog box appears.

  You may need to reactivate and/or re - enter your product key or Activation can occur automatically.

  If you are prompted for your key, use one on the COA sticker on the case of the machine

  Restart and after returns with a new report MGADiag

• Displays 64 bit Vista a vacuum of the screen and is unresponsive, requiring the hard stop

  I have laptop HP dv5 using AMD Turion (TM) RM of Mobile of Core Dual 72 using Vista 64-bit service pack 2. Recently, the system will display a white screen (grey) in a variety of situations, and if the hard drive does something, I can't get an answer and got to hold my power button to get a hard stop.

  Then, I repair at startup problems and the computer will only start in safe mode before allowing a normal startup...

  I don't know the cause.  I use two systems software malicious (or found nothing) and used Kaspersky... never found nothing.  I uninstalled Kaspersky because I don't think that it has never installed right firstly on that pc, now have bases of millisecond.  (I even if maybe that Kaspersky did something every time it updated.)  But I have a question.

  This sometimes happens if I leave my computer and it will sleep... sometimes if I open a file and sometimes opens a Web page on which

  What should I check?   I am at a loss what to do... .other have obtain a new machine, as happens several times whenever I use it.

  Thank you

  .

  What does the Startup Repair tool. Look in C:\windows\System32\LogFiles\Srt\SrtTrail.txt.

• Create the hierarchy of the folders and multiple subfolders

  Dear friends,

  I copied the script to "create folder hierarchy" (created from chinna), but I need small change in their script, I added the below comment purposes created subfolder, its also created.

  But I need several folder created in the same hierarchy (see the screenshot "my requirement")

  var target is Folder.selectDialog ("choose a target folder");.

  If (!) ((Folder(target+"/"+"Folder A"))) .exists)

  {

  new folder (target + "/" + "PRODUCTION" + "/" + "APPL" + "/" + "DD-MM-YY") .create ();

  }

  OUTPUT:

  

  MY REQUIREMENT IS:

  

  Thanks in advance:

  Kanaga kumar. k

  Hi kanaga kumar,.

  There are several ways to do so. With the logic of the Cognet script, you can do something like this:

  var target = Folder.selectDialog("Choose a target folder");
  if(!(Folder(target+"/"+"PRODUKTION")).exists) {
      new Folder(target+"/"+"PRODUKTION").create();
      }
  if(!(Folder(target+"/"+"PRODUKTION"+"/"+"APPL")).exists) {
      new Folder(target+"/"+"PRODUKTION"+"/"+"APPL").create();
      }
  if(!(Folder(target+"/"+"PRODUKTION"+"/"+"FONTS")).exists) {
      new Folder(target+"/"+"PRODUKTION"+"/"+"FONTS").create();
      }
  if(!(Folder(target+"/"+"PRODUKTION"+"/"+"IMAGES")).exists) {
      new Folder(target+"/"+"PRODUKTION"+"/"+"IMAGES").create();
      }
  if(!(Folder(target+"/"+"PRODUKTION"+"/"+"PDF")).exists) {
      new Folder(target+"/"+"PRODUKTION"+"/"+"PDF").create();
      }
  

  Have fun

• ISE license consumption and freeing licenses [RADIUS]

  Hi people EHT,.

  There are a lot of questions of ISE issued by me in the last time. And guess what - another here.

  I wonder how the ISE license consumption and freeing licenses actually works. At least I have not find any good document or post on it.

  From what I understand, a license (no matter if basic, plus, apex whatever) is consumed based on RADIUS accounting messages.

  Example:

  An endpoint is authenticating and allowed successfully with 802. 1 X without profiling or posture or whatever (simple). The ISE knows that this endpoint must use a base license and basic license consumption is increased by one.

  As soon as the client is disconnected from the network, the n (switch, WLC) sends an accounting stop message to the ISE and the ISE again releases the base license.

  (am I right so far?)

  Assuming that I am just using the example above:

  RADIUS is not say that really reliable. No matter that it uses UDP (which is unreliable), RAY has a mechanism of recognition built in (Accouting request / respone). But this mechanism gives up after a few attempts. Suppose that a client is disconnected, but the message of stop RADIUS is not received by the ISE.

  Fact the endpoint stay forever in the State of the current session and therefore to consume a license forever? (Assume that there is no timer of dot1x re-authentication).

  Or is it a mechanism of 'time-out' for endpoint licences?

  Kind of a side story here:

  I wrote a simple wrapper for the freeradius tool 'eapol_test '. Go Linux applications unique command line EAP (e.g., EAP - TLS) can be issued to a RADIUS server. If the Linux client acts as "supplicant" X 802.1 and authenticator. It's cool to quickly test the availability of the service of an authentication server.

  My simple wrapper for "eapol_test" performs a ping 'EAP' at the time of convergence of measurement and measurement of authentications per second in a lab environment. The wrapper can also change endpoint of each session of RAY MAC. When I do ping EAP in a laboratory of my number of licenses on the ISE exploded, because eapol_test does not deliver messages from accounting RADIUS to EHT :)

  Johannes has soon

  Hi Johannes-

  You're right about the consumption of license:

  Licenses are counted against concurrent, active sessions. An active session is one for which a RADIUS Accounting Start is received but RADIUS Accounting Stop has not yet been received.

  However, in addition to this:

  Note Sessions without RADIUS activity are automatically purged from Active Session list every 5 days or if the endpoint is deleted from the system. 

  This information used in the documentation of ISE 1.x, but for some reason, he is not :) in the 2.x here's the info from 1.2: http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/installation_guide/ise_ig/ise_app_d_man_license.pdf I hope this helps! Thank you for the useful job evaluation!

• ISE and WLC for sanitation of the posture

  Please can someone clarify a few things regarding the ISE and posture wireless.

  (1) is the ACL-POSTURE-REDIRECT used for conversion, or is it just an ACL to redirect some of the posture of the kickoff checking traffic?

  (2) can / a dACL/wACL list must be specified as a sanitation ACL?

  (3) the WLC ACL should be written in long format (manually specify source and dest ports/doesny direction any job?)

  (4) does anyone have working example ACL for redirect (CPC) posture and sanitation (dACL)?

  (5) any other advice or pointers would be as useful as any docs I have found so far, what he TrustSec2, CiscoLive or anything else, do not seem to help me understand sanitation and WLC posture

  Thank you

  Nick

  Yes,

  This means that strategy available to your customer does not have a rule that will correspond to an entrepreneur who joined the network. Can you post a screenshot of the provisioning of customer policy?

  Thank you

  Tarik Admani
  * Please note the useful messages *.