Cisco Identity Services Engine Posture Updates Failure

On a Cisco ISE 2.x deployment, noticed that the Posture Update (Admin -> Settings -> Posture -> Updates) is failing since 14 Feb, 2018 this year. That was the date the update ran successfully for the last time. The feed URL or proxy settings remained the same during this time.

 

Cisco ISE Posture Updates Failure

 

Manual “Update Now” is bringing this message in a pop-up window.

Remote address is not accessible. Please make sure update feed url, proxy address and proxy port are properly configured.

 

Read More

Cisco Identity Services Engine Upgrade Failure 2.0 to 2.3

Cisco ISE

 

Experience with upgrading a two-node Cisco Identity Services Engine (ISE) deployment from version 2.0 to 2.3.

 

Current Cisco ISE deployment:

!!!! Hardware

VMware 6.5

Node 1: Primary Admin, Secondary Monitoring, PSN
  4 CPU
  24G Memory

Node 2: Secondary Admin, Primary Monitoring, PSN
  4 CPU
  24G Memory



!!!! Show version

Cisco Application Deployment Engine OS Release: 2.3
ADE-OS Build Version: 2.3.0.187
ADE-OS System Architecture: x86_64

Copyright (c) 2005-2014 by Cisco Systems, Inc.
All rights reserved.
Hostname: tnetise01

Version information of installed applications
---------------------------------------------

Cisco Identity Services Engine
---------------------------------------------
Version      : 2.0.0.306
Build Date   : Thu Oct  8 18:55:23 2015
Install Date : Mon Oct 16 13:14:57 2017

Cisco Identity Services Engine Patch
---------------------------------------------
Version      : 5
Install Date : Tue Oct 17 14:42:24 2017

 

Upgrading to version: 2.3

Cisco ISE Upgrade Bundle 2.3

 

Read More

Cisco Prime Infrastructure Inline Upgrade Failure 3.1 to 3.4

Prime Infrastructure

 

Experience with upgrading a Cisco Prime Infrastructure instance from version 3.1 to 3.4.

 

Current Prime Infrastructure Instance:

!!!! Hardware
VMware 6.5
16 CPU
24G Memory



!!!! show version
Cisco Application Deployment Engine OS Release: 3.1
ADE-OS Build Version: 3.1.0.001
ADE-OS System Architecture: x86_64

Copyright (c) 2009-2016 by Cisco Systems, Inc.
All rights reserved.
Hostname: tnetprime


Version information of installed applications
---------------------------------------------

Cisco Prime Infrastructure
********************************************************
Version : 3.1.0
Build : 3.1.0.0.132
Critical Fixes:
        PI 3.1.6 Maintenance Release ( 6.0.0 )
Device Support:
        Prime Infrastructure 3.1 Device Pack 10 ( 10.0 )
        Prime Infrastructure 3.1 Device Pack 11 ( 11.0 )

 

Upgrading to Version: 3.4

 

Read More

Regular Expressions for Network Engineers

regex

How many times were you working on a task which involved either updating all instances of a piece of configuration or creating a new configuration piece at multiple points on a network device?  You have translated the requirements into functional syntax, a blueprint, for the specific hardware platform, now it’s time to implement it 10’s of times on the device. How do you implement it on the device?

For small and non-routine one-off tasks, the quickest way may be to jump on the device and repeat the manual labor N times at different places and with slight variations, where N is hopefully a relatively small number worth this manual approach. This may also be true for a junior network engineer who may not know other efficient methods of achieving it.

This is a type of automation as we aim to reduce if not eliminate manual processes that are very well defined and certainly repeatable. While automation can go a long way where we can have multiple devices or device groups, automated login to these, implementation of config and finally verification of status and rollback if needed, all being launched in order by a single orchestrating script – say an Ansible Playbook. Let’s keep that for some other day and talk about simple config generation on a single device that we can manually apply.

Ok, enough of the need for regular expressions (regex), let’s get started.

 

Read More