ISE distributed deployment and license management

Similar Questions

• ISE distributed deployment upgrade

  My client has an ISE deployment with 4 nodes: primary and secondary Admin/coach and 2 Policy Server. Admin nodes are virtual machines, the policy nodes are 3315 devices.

  The system was installed nearly three years with version 1.1.0... It seems that the system never had questions if never has been patched or upgraded. Why fix something that works well?

  Today, that there was a problem because expired certificates, so the review to get the system in place and running again, the issue of the update bring the conversation. We love to upgrade to the latest supported version. So I wonder for a few tips and ideas for dealing with the planning of the upgrade.

  I have some doubts:

  3315 device can support version 1.3 without problems?

  I know that the upgrade procedure is essentially the installation a .tar file, but I'm not clear how the process in a distributed deployment must be. I had run upgrades in stand-alone systems, but never in a distributed deployment. So I need to upgrade the main Admin only, and the other nodes would automatically improve?

  I need to upgrade from 1.1 to 1.2 first, then 1.2 to 1.3?

  I undertand version 1.1 is 32-bit, version 1.2 and 1.3 are 64-bit, so I guess that the process could take a long time (maybe a few hours), so a maintenance window would need 3 or 4 hours so that the whole system has become stable.

  Can you give me some tips and suggestions to avoid the major problems?

  Kind regards.

  Daniel Escalante.

  Hardware support and Personas for ISE 1.3 include 3315

  http://www.Cisco.com/c/en/us/TD/docs/security/ISE/1-3/Release_notes/ise1...

  You can proceed to ISE 1.3 1.2 or 1.2.1

  http://www.Cisco.com/c/en/us/TD/docs/security/ISE/1-3/upgrade_guide/b_is...

• ISE distributed deployment

  Hi all

  We have a primary and secondary headquarters in the United Kingdom and then larger branches in Europe and the United States. Total number of users is ~ 2500

  What we're trying to do is to deploy a main node of admin services, monitoring and policy in HQ1, a secondary admin, the crux of the oversight and services in HQ2 and then political, policy services node in Europe and the United States. This deployment is supported? I have read the documentation for distributed deployments and he suggested to have nodes separate policing for all sites, however, I don't know if this is necessary in all scenarios such as ours.

  Can someone please help

  Hello

  Ideally, the installer should work in WAN link. Just ensure less latency in the environment and network settings.

  Please rate as correct if this can help!

  Concerning

  Gagan

• Looking for a module Flex do Login, registration and license management

  I'm looking for an Adobe Flex module open source or commercial for connection management, registration and user license. The back-end can be either on my site (PHP and MySQL) or secure 3' rd party.

  User interface would be the following:

  • Register (new user)
  • Log in (registered user)
  • Purchase of a new (user) license
  • Apply the license to enable the features of Flex app (user)

  Any suggestions are appreciated,

  OutputLogic

  I saw someone mention this yet, so check the NitroLM

  http://www.Nitro-LM.com/

  On paper, it looks like that's exactly what you're looking for.

• Deployment and configuration management

  Are there recommended recommended somewhere on how to manage different workflows using some kind of configuration management?  I develop a dozen about the workflows that will be combined in a package, but this environment does not seem to fit with a typical software development configuration management model.  How other people have addressed this issue?

  Once that flow in a kind environment CM which is only a good way for the distribution of the package?  They have just made available to consumers through a portal or is there a better way to do this?

  Hello

  You can export a workflow or package to the system of file every time change you it and commit to your Conference Management System.

  It is not perfect, but works.

  The other thing you can do is to use different servers of vCO as package repositories and synchronize packages when appropriate. I wrote an article about it here.

• That is the accounting Radius WLC in distributed deployment of ISE server, this is the PSN or MnT node

  Hello

  on the WLC configuration for Management Server accounts Radius in distributed deployment of ISE, what server is the radius, the Service account management policy one or several nodes or the nodes in control?

  As always, appreciate your reply.

  Mike

  Hi Mike,.

  The WLC must be configured to send authentication and accounting for the PSN. Monitoring nodes are (among other functions) where newspapers PSN are transmitted to the.

  see you soon,

  SEB.

• license and Update Manager

  All, I have 2 questions

  (1) I have a host esx 3.5 in a vCenter. I used the LM Manager for the license for this 3.5. Is - the truth is that I will not see licensing in vCenter EPG Manager? Otherwise, what I do to see the 3.5 license in vCenter

  (2) my attempt to use inside of vCenter Update Manager updated the 3.5-4.0 has failed several times. Is there any file temp temporary on the server vCenter or ESX 3.5 host that I need to remove before trying to use the Update Manager again? The reason why it fails? the error message, it is my place of storage may be full, or the patch is already there

  Thank you

  Take a look at the license for vCenter Server 4.0 Server Configuration. Connect section vCenter Server 4.0 to a license server explains how to connect to your LM License Manager (I assume that you installed on your virtual Center 2.5 server).

  André

• ISE 1.4 and access for guests with distinct SMS providers

  Could someone please help with the installation of the guest access. I am trying to perform an establishing a unique SSID prompted with two central WISN and a pair of ISE 1.4 to manage a building containing different companies.  Installation work good with a sponsor (company) chooses just the customer who registered but at the end of the implementation the handover raised a question that left me speechless.  Every company wants to have their own account SMS provider. How can I configure so that the end-user location defines the SMS provider?

  Hello

  There are 2 different stand-alone ise or there are members of the same deployment?

  You can add gateways sms on the parameters of the ise. So if there are 2 different deployment, simply choose the sms gateway that you created in a configuration Portal comments.

  If you have only 2 servers ise 1 deployment, you can create 2 comments portal on each one you set the right sms gateway.

  If you have 1 deployment and have the same ssid comments:

  -divide PSA between 2 companies using the AP group

  -to the ise, you can use the defined strategy (simpler and more readable).

  -According to the AP group, you can Portal popup comments 1 to 1 group AP and another portal of comments for another group of AP. In order to make this work, you need to change the type of id station call on the Security tab, on the wlc himself.

  hope this is clear.

  If you have deployed MSE, you can set your rules and popup portal based on the physical location without the use of the AP group

• configuration of vCOP and licensing NOOB question

  Friends,

  I searched for a few loads solution / reporting for vSphere environment and after a few days with Veeam One

  I downloaded vCOP test to see if it's something I need (apparently...)

  Unfortunately I have not understande what wrong with my way of thinking... I see a license key on the evaluation of product mywmare page - but the auto-generated license key

  vCOP in web view client is different. In Operations Manager, I see only three tabs: operations, environment and alerts... I see no reports etc...

  In configuration I see service running, connected vcenter, the status of 'authorized' product

  Where is the flaw? Versions? Is it necessary to change the license but how?

  Please advice; I think that it is something so obvious that I can't find a solution online...

  Many thanks in advance,

  P

  Hello

  According to the Release Notes https://www.vmware.com/support/vcops/doc/vcops-581-vapp-release-notes.html vCOps

  "All license management tasks are performed in the vSphere Client. You cannot assign licenses in vCenter operations Manager Administration Portal. Follow the instructions in the VMware vCenter Operations Manager deployment and Configuration Guide for license.

  vCenter Operations Manager running in mode of foundation if no license key or an incompatible license key is applied. "Assign the license key for the edition you purchased."

  See also this KB: VMware KB: vCenter license 5.x Operations Manager State fails to update after you apply the license

• WebLogic Portal deployment in question - managed server

  Hello
  
  I have a sample file Portal ear (default value of pointbase database) which has been developed in weblogic workshop to the
  development of base domain - server admin in portal weblogic 10.3. able to test page successfully picking flow.
  
  ----
  
  Now, I created another baseTdomain mode of production, weblogic portal 10.3 domain admin server and the servers managed in a cluster.
  for this baseTdomain, I am pointing to the oracle database.
  Admin Server (port: 7001) and managed servers (port: 7009) begin very well without any problems.
  
  I exported the ear of the workshop of the domain based file on my local and trying to deploy in the
  managed server.
  
  Its not to deploy and complain... The EAR file is prepared instead of an active state.
  
  How can I copy all the information portlet from pointbase to Oracle stuff. Am I missing something here and so, no deployment happens?
  
  < 19 August 2009 11:44:24 AM MST > < WARNING > < Server > < BEA-002637 > < could not registries
  ER a listener of disconnection due to weblogic.rmi.extensions.DisconnectMonitorUna
  vailableException: could not register a DisconnectListener to [weblogic.rmi.int
  Iqbal. BasicRemoteRef - hostID: '-7879092007710906947S: 192.168.1.116: [7009,7009,-]
  [1, -1, -1, -1, -1]: baseT_domain:ms1', oid: '31,' channel: 'null']. >
  
  < 19 August 2009 11:58:41 AM MST > < WARNING > < hats > < BEA-149004 > < ended in failure
  detected when opening to distribute task for application 'psAppEAR '. >
  < 19 August 2009 11:58:41 AM MST > < error > < Console > < BEA-240003 > < Meeting Console
  The following error weblogic.application.ModuleException Ed: preparation of Exception
  module: EJBModule (netuix.jar)
  
  
  Unable to deploy EJB: netuix.jar ProxyPagePersistenceManager:
  
  Exception when trying to deploy Unchecked or excluded from security policy: web
  logic.security.service.ResourceCreationException: weblogic.security.spi.Resource
  CreationException: [Security: 090310] cannot create the resource
  
  Thanks for your help in advance,
  
  Thank you
  Krishna.

  Hello
  I'm not sure if you can ignore the warnings or not. Probably, if you do not use JMS / async Web services you can.
  3 Im still not sure what port you are talking about, where you specified it? do you mean port multicast? in which case it can be the same as the admin server port (the multicast address is different), but you should use unicast I think

• Can the License Manager load the computer license first, instead of the license based on users?

  We have several machines in the lab with licenses computerized on them and a number of technicians who have licenses based on users. When he signed from time to time as themselves, instead of the generic service account, a technician of the License Manager fits on the machine their user account. Not a problem until they're trying to connect to their own PC again LabVIEW and they get the trial of 14 days notice period.

  Is there a way the License Manager looking for the license to the computer first instead of the user license?

  Thanks for any help.

  Joe

  Hey Joe,

  In the license file on the license server, you may be able to manually change the tag "sort" in the file to change the order in which VLM withdraws licenses. Licenses are checked in descending (2, then 3, then 4, etc.). As a general rule, your license file is set up in a default order, but in special cases like this, it may be advantageous to change the order. To do this, follow these steps:

  1. open the license file with a text editor (such as Notepad)

  2. search for the tag "flows out". For example, the entry "VLM_Core" will sort tag value will appear as "sort = first". Do not change this value. VLM_Core must always be the first.

  3. change the value of sorting tag for the license to the computer named to a value less than the value of sorting tag for the named user license. (for example 'sort = 2"for named computer and 'sort = 3" to the named user).

  4 save the file and reinstall the license.

  Let me know if you have any questions!

• License Manager NOR does not; It performs a query for the current license status, said

  I currently have the evaluation version of Labview. I tried to use a volume of my University license by typing the name of the server in the License Manager NEITHER, but after that, whenever I try to open the License Manager, it seems that he has slain saying "question the current state of the license" and never actually opens. Also, when I try to open Labview, it freezes during the completion of the installation. Later, I realized that students have no access to the license of the University for their own PC, so I can't use this license in volume anyway.

  I uninstalled everything related with NEITHER on my PC and reinstalled the evaluation version of Labview, but the same problem still exists. Is there something I could do also wipe my hard drive?

  Nevermind, it works now. I could go back to a system restore point before the problem started, and that fixed it. Well, what happened was the License Manager could not be interacted with at all and even with Labview. LabVIEW would remain on the same screen sometime after he arrived at the "finishing initialization."  I still have no idea why they froze like that just because I entered a server name in the License Manager, but it's ok now.

  Thanks for your great help!

• How can I run the License Manager?

  Hi - I had LV 8.5 installed for a while now and I just built an exe file, so I need to activate the application builder. I have a license key but I do not see how to run the License Manager.

  According to the instructions in the box, it should be at the start > programs > National Instruments > NI License Manager

  But he's not here. Does Nayone know where on C: I can actually find the exe I need to run?

  It is a Windows XP machine.

  Thank you

  Jon.

  Here, "C:\Programme\National Instruments\shared\License Manager\Bin\nilmUtil.exe" it is on a German system.

• What could change the ID of the computer used for licenses in the License Manager OR?

  the site of our client we initially implemented our software that uses the Vision Run-Time and Acquisition of Vision software.    We bought a license for the PC and it has been installed. He has headed since July.   But today the customer started getting errors requesting the license. using the License Manager, OR we see "status: activated for another computer.

  look no further, we now see a different ID 'computer' code I have original screenshots when I applied the license originally so I know that the ID of the computer was not a typing error.

  The customer says person only has swapped the PC, but is currently looking to see if any work has been done.

  Someone at - it expirenced this before?

  Quote: Your computer ID is based on the MAC address of your Ethernet card. In some cases, your computer ID is based on the disk volume serial number.

  Well, my computer has literally just sat there week and this morning it me that LabVIEW was not enabled.  I do not think that the MAC address or the disc has changed in that time.  But who knows.  Our IT is pretty bad.

• SignalExpress Tektronix License Manager

  I'm still the site administrator for LabVIEW SignalExpress Tektronix Edition licenses (used by the Tektronix sales force to sell SignalExpress TE) and I still have the same computer, but it's switching me from XP to Win7. The same License Manager software will still work, or I'm going to need an upgrade? A new license for the License Manager?

  Hello scottdavidson,

  If your computer ID does not change, then you should be good on the terms of your license file.

  Kind regards