ISE Server - query of multiple networks

Similar Questions

• Server with multiple network cards

  Hello

  I have a server with multi-port NETWORK adapter running ESXi 5.5.0

  Can anyone remind me how to allocate a VM to port a network?

  or point me to the URL of the full help?

  Thank you all

  The c# Client is that you need to install on your windows computer. The alternative would be the Web Client vSphere. Both are essentially 'vSphere customers. "

  Anyway, you don't need to restart. You can change the network as you want without having to reboot.

• How to configure a VM with multiple network cards to see Agent?

  How to configure a VM with multiple network cards to see Agent?

  We can archive this requirement by configuring the subnet used view Agent.

  The subnet determines which view address of Network Agent provides the server instance to connect to view for the client protocol connections. The view on VM officer has more than one NIC

  Follow the procedure below:

  on a display Agent installed VM,

  * Recording of VM session.

  * RUN--> type regedit or type regedit.exe at the command prompt

  * Create a registry entry to configure the subnet.

  For example: is HKLM\Software\VMware, Inc. \VMware VDM\Node Manager\subnet = n.n.n.n/m type - REG_SZ.

  In this example, n.n.n.n is the TCP/IP subnet, and m is the number of bits in the subnet mask.

• [Oracle] [ODBC SQL Server driver] [libssclient22] General network error

  I use the oracle gateway (11.1) to sqlserver on Linux platform with the Oracle 10 g server.
  
  I'm getting following error when I run a select query:
  
  ORA-28500: connection between ORACLE and a non-Oracle system has sent this message:
  [Oracle] [ODBC SQL Server driver] [libssclient22] General network error. Check your network documentation. [Oracle] [ODBC SQL Server driver] [libssclient22] ConnectionOpen(connect()) (connect()). [Oracle] [ODBC SQL Server driver] Invalid connection string attribute
  ORA-02063: preceding 2 lines from SQLSERVER
  
  Another thing is, I've created an ODBC DSN named "sqlserver" as well. This configuration works well when the parameter "program" dg4odbc in Listener.ora. But with dg4msql, it gives an error.
  
  Here are the configuration files:
  
  -----------------
  initsqlserver.ora
  -----------------
  #
  # HS init parameters
  #
  HS_FDS_CONNECT_INFO = database_machine:1433 / / test_master
  HS_FDS_TRACE_LEVEL = OFF
  HS_FDS_RECOVERY_ACCOUNT = RECOVERY
  HS_FDS_RECOVERY_PWD = RECOVERY
  
  ------------
  Listener.ora
  ------------
  
  SID_LIST_sqlserver =
  (SID_LIST =
  (SID_DESC =
  (SID_NAME = sqlserver)
  (ORACLE_HOME = u01/app/oracle/product/11.1.0.6.0/gateway)
  (PROGRAM = dg4msql)
  )
  )
  
  SqlServer =
  (DESCRIPTION_LIST =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP) (HOST = Server_Machine)(PORT = 1522))
  (ADDRESS = (PROTOCOL = CIP)(KEY = PNPKEY))
  )
  )
  
  
  ------------
  tnsnames.ora
  ------------
  
  SQLSERVER =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP) (HOST = Server_Machine)(PORT = 1522))
  (CONNECT_DATA =
  (SID = sqlserver)
  )
  (HS = OK)
  )

  Hello

  The error you are getting is because your HS_FDS_CONNECT_STRING is not correct:
  Don't forget you can ping the SQL SERVER name of the Oracle server command, or use the TCP/IP address
  Check the port, it is not necessary 1433.
  You can use the name of the instance instead of the port:
  HS_FDS_CONNECT_STRING = server_ip_address/instance_name/database_name

  Be careful, in the LISTENER. ORA, you must specify the gateway machine and not the SQL SERVER machine:
  SqlServer =
  (DESCRIPTION_LIST =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP) (HOST = Gateway_Machine)(PORT = 1522))<====you must="" specify="" oracle="" gateway="">
  (ADDRESS = (PROTOCOL = CIP)(KEY = PNPKEY))
  )
  )

  Ditto for TNSNAMES. ORA:
  SQLSERVER =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP) (HOST = Gateway_Machine)(PORT = 1522))
  (CONNECT_DATA =
  (SID = sqlserver)
  )
  (HS = OK)
  )

  Concerning

  Mireille

• Two tacas server on the same network

  Hi all

  Is it possible to have 2 radius server on the same network, if the first authentication server fails,

  Then, the other will be the auth?

  Thank you

  Of course, is. Simply configure your network devices to switch to the alternate server if the first is not available.

• ISE server receives requests for authentication of the bridge VLAN, not the IP Address of the switch management

  Hello

  A 3850 catalyst switch has VLAN 20 (10.18.4.32/29) defined on it, which has a 10.18.4.38 gateway:

  D01-01-BWY #show ip short int vlan 20
  Interface IP-Address OK? Method State Protocol
  Vlan20 10.18.4.38 YES manual up up

  A server of ISE (SNS3415) is connected to a port configured on VLAN 20, with IP address of 10.18.4.33.

  01-BWY-D01 has to a management interface of 10.18.4.17.

  I created this switch as a device network in ISE and activated the RADIUS config and then configured the switch with the following commands:

  RADIUS attribute 6 sur-pour-login-auth server
  RADIUS attribute 6 support-multiple server
  Server RADIUS attribute 8 include-in-access-req
  RADIUS attribute 25-application access server include
  dead-criteria 5 tent 3 times RADIUS server
  RADIUS-server host 10.18.4.33 auth-port 1812 acct-port 1813 borders 7 1521030916792F077C236436125657
  RADIUS-server host 10.18.4.35 auth-port 1812 acct-port 1813 borders 7 02350C5E19550B02185E580D044653

  radius of the IP source-interface GigabitEthernet1/0/1

  The problem:

  When I test the functionality of RADIUS using the following command, it fails. HOWEVER, the customer (switch) IP listed in the error log in the front door of the VLAN 20 (!):

  test the aaa group RADIUS server 10.18.4.33 auth-port 1812 Capita123 user radius acct-port 1813! new-code

  10.18.4.38 is the gateway IP address of the VLAN that hosts the servers of the ISE, I don't understand why its listed in error as IP device logs!

  ource Timestamp 2016-06-22 16:38:02.826 Receipt of timestamp 2016-06-22 16:38:02.841 Policy Server GLS-ISE-01 Event 5413, accounting RADIUS-Request dropped Reason for failure 11007 could locate no device network or Client AAA Resolution Check if the device network or AAA client is configured in: Administration > network resources > network devices First cause Could not find the network device or the AAA Client while accessing NAS by IP during authentication. Type of service Box NAS IPv4 address 10.18.4.38

  Other attributes ConfigVersionId 118 Port of the device 1646 DestinationPort 1813 Protocol RADIUS ACCT-status-Type Update-intermediate ACCT-Delay-Time 15 ACCT-Session-Id 00000000 ACCT-Authentic RADIUS AcsSessionID GLS-ISE-01/255868885/32 IP address of the device 10.18.4.38

  If I reconfigure the switch to the ISE - peripheral network and give it the IP address of 10.18.4.38 (the ip of the gateway), my radius authentication tests suddenly becomes successful.

  can someone clarify the situation what is happening here?

  I need to be able to define multiple switches by their unique IP addresses.

  Thanks for your time

  m

  Hello

  The only time I saw that it was due to use a deprecated command: radius server host.  There was a bug on the IOS XR platform as well.

  Could you please reconfigure your order of RADIUS by using the new command: radius server? And test again?

  The doc of Cisco for the new order:

  http://www.Cisco.com/c/en/us/products/collateral/iOS-NX-OS-software/iDEN...

  Thank you

  PS: Please do not forget to rate and score as good response if this solves your problem

• 3495 initial ISE server config question

  Hello

  I must be powered by a secure server 3495, for the first time in two weeks. I spent review the online documentation for this. I think it is a little vague.

  When the first power of the server tells me it will automatically run a "setup" program How to view this? I have a monitor, keyboard and mouse for the 3495 or can I connect using a network terminal program?

  Any ideas?

  Please see the below quick start guide

  http://www.Cisco.com/c/en/us/TD/docs/security/ISE/1-2/installation_guide...

• ISE-guest user account multiple connections

  Hello

  How do ISE I only allow a connection to the guest both user account.    the real problem I have is when I give a username invited to someone, it can circulate this userid with others and multiple unauthorized guests use this unique user id to connect to the portal comments

  In any case restrict?

  Limiting the guests at a Session active network

  You can restrict the guests to have a single device connected to the network at a time. When clients try to connect with another device, the device is automatically disconnected from the network.

  It is a global setting that affects all the portals comments.

  Step 1 choose Administration > management Web portal > settings > comments > political portal.

  Step 2 check the only guest session authorized by user option.

  Step 3 click Save.

• vCenter - multiple network cards

  Hello

  I have a vCenter Server 4 U4 with multiple NICs for managing esxi connectivity etc. All ESXi hosts are connected via a dedicated card. For security reasons I must add one host to vCenter managed on one vlan separated / network card. Is this a supported configuration or a configuration that someone uses?

  When I add the host to vCenter it disconnects after about 60 to 90 seconds. All firewall ports are open and nothing is denied, DNS works very well, as well as the ICMP between vCenter server and the host. Any ideas?

  Thank you

  Good deal.  If the Windows Firewall looks like right check this KB: http://kb.vmware.com/kb/1008030

  Hersey

• implementation of the Hosts file on the server for the entire network?

  I see a lot of information on how to edit the local Hosts file on individual computers. But, is it possible to edit a Hosts file and have effect throughout the network?

  We have a network of a little over half a dozen of Mac mini, who take their DNS information from another Mac Mini running the application server OSX (under El Capitan). This server is the primary DNS machine for the network. I want to implement a Hosts file for the entire network.

  Parental control seems to be broken in OSX El Capitan, so this seems like the best next to us, short option to buy some third-party service, which I prefer not to do.

  I think that dnsmasq installation on your Mac server and configuration of all your computers to use as your "DNS Server" will achieve what you want.

  See osx https://oracle-base.com/articles/misc/dnsmasq-for-simple-dns-configurations-mac-

  Why do you feel you must do this?

• Can't see that 12 of my Clients 400 + server domain controller 2008 'network '.

  I don't know when he was born, but I'm unable to browse the entire network on the domain controller.

  We have Server 2008 and our two main server, I am unable to connect to several machines on a network, or 'see' in the network.

  I can see the machines that I need to log off the server from another machine of the client, but not from our servers.

  Thanks in advance for any help,

  Laura

  Hi Ibray3,

  Your question is more complex that most seem to be on the answers. I suggest that you re-post on our TechNetforums where computer professionals can help you.

  http://social.technet.Microsoft.com/forums/en-us/categories/

  I hope this helps.

• RVL200 and Windows 2000 Server - can not access network resources via VPN

  I am new to the VPN, and I feel I'm missing something very basic in my configuration. I just installed a RVL200 as the gateway for my corporate network router.  The network includes a Windows 2000 Server that acts as server DHCP and several PC and a printer.  I was able to "establish a SSL VPN tunnel" home connection to the router, but after recording in everything I see is the screen of virtual Passage - one with lock icons - otherwise I am inside the router.  The statement shows that I am connected.  Once the tunnel is established, what am I supposed to do to get computers to the computers on my network?  I can ping all computers on the network using their LAN address.  I'm supposed to see a choice of network resources to get to this point?  I put the router as a trusted site in the server and even tried to disable all firewalls, but I see that the VPN screen with icons.  I don't know how to proceed from here because I don't know what I'm supposed to see.  Thanks for any help that you can give to a newbie!

  The SSL connection is only for the VPN router. To access the computer, you can use Windows Remote Desktop connection. So that you can access to remote computers on the network, or you could look for 3 third-party software for remote access

  Hope this helps

• Merge devices with multiple network interfaces

  Hello

  Is it possible to add several interfaces to a device network, but merged into a single device?

  For example, we have a lot of HP and Dell servers that have usually a network interface and an interface of management (ILO or iDRAC).

  It would be useful to be able to add two interfaces while having them mapped on the same server in NMS. The network interface would show us the availability on the network and the management interface may alert us hardware problems via SNMP.

  Anyone knows if this is possible, or do we need to have more than one entry for each server?

  Thanks in advance

  Ewan

  Hi Ewan,

  If the INVESTIGATION period is not recognized by the operating system, we most likely would not be able to draw the individual IP addresses of the ILO or the iDRAC. You can present this as a feature request in the ideas of the community section.

  Thank you

• connections of RAW socket to the server inside the corporate network

  Hello!

  I have not found any documentation anywhere elsewhere I hope someone can help out me.

  o know for ftp/http there are a proxy that is used in the scope of work to access the servers inside the corporate network.

  But what is the best practice for an application installed on the perimeter of work to establish a raw socket connection to access network resources other than http/ftp behind my corporate firewall? so I want something like

  sock int = socket (AF_INET, SOCK_STREAM, 0);

  Connect (...) //using a host/ip within my company and port 1234

  Write (...)

  Close (sock)

  is this possible?

  and second: will it work if I use QTCPSocket?

  Hello.

  Yes, there is a recommended approach to do this for the current version of BES.  A HTTP proxy is used to connect to both corporate and external networks internal when in the scope of work.  To connect to a particular host and port, you HTTP CONNECT request to the proxy, and then once the connection is established, you have a connection with the remote server socket.  I wrote a sample application that covers the QTcpSocket / QSslSocket, BSD sockets, OpenSSL taken and connections of curvature (the species is supposed to be transparent, but there has been problems reported with some built OS).

  I'll clean up this sample application and submit for review before it is posted on GitHub.  If your need is urgent, I could share a few code snippets to help you to implement the solution for your specific use case.

• I want to connect to a windows 2003 server in a windows network working group 7. Failuer connection: a user or the unkwon network password

  When I want to connect to another computer with win Server 2003 computer that I invited with a confirmation of the administrator. the name of the Server 2003 computer is ofoghserver. When I enter username: ofoghserver\administrator and password this occure failuer Login error: a network unkwon or user password... but I can connect to the server with remote desktop and I can connect to another computer with windows 7. all computers in this good work, but this computer can not enter windows server.

  Did you create the corresponding user account and the password on the server? If this isn't the case, you should do this. MS - MVP - Elephant Boy computers - don't panic!