Cisco Cisco Identity Services Engine 1.2 Notas de publicación
158
Release Notes for Cisco Identity Services Engine, Release 1.2.x
OL-27043-01
Cisco ISE, Release 1.2.1, Resolved Caveats
Cisco ISE, Release 1.2.1, Resolved Caveats
The following table lists the resolved caveats in Cisco ISE, Release 1.2.1.
CSCum88173
Minimum compliance module version required for configuring SEP 12.1.x
definition check on Mac OS is 3.6.8616.2 and not 3.6.8501.2.
definition check on Mac OS is 3.6.8616.2 and not 3.6.8501.2.
The minimum Compliance Module version required for configuring AV check in
NAC support charts for Symantec Endpoint Protection (SEP) 12.1 for Mac OS is
displayed as 3.5.8501.2. However, the version 3.5.8501.2 has issues in detecting the
definition date/version for SEP 12.1.x on Mac OS. As this issue is addressed in
Compliance Module 3.6.8616.2, administrators need to use 3.6.8616.2 as the
minimum Compliance Module needed for detecting SEP 12.1 definitions on Mac
OS.
NAC support charts for Symantec Endpoint Protection (SEP) 12.1 for Mac OS is
displayed as 3.5.8501.2. However, the version 3.5.8501.2 has issues in detecting the
definition date/version for SEP 12.1.x on Mac OS. As this issue is addressed in
Compliance Module 3.6.8616.2, administrators need to use 3.6.8616.2 as the
minimum Compliance Module needed for detecting SEP 12.1 definitions on Mac
OS.
CSCun60071
UI not visible for application launched by NAC agent during remediation
When Cisco ISE is configured to launch an application as a remediation, the
application gets launched and is available in the task manager, but the UI is not
visible to the user, irrespective of whether the user is logged in as admin or not.
Since Launch program remediation feature is modified from user privilege to system
privilege, NAC Agent allows UAC Elevation for all Launch program remediation
actions.
application gets launched and is available in the task manager, but the UI is not
visible to the user, irrespective of whether the user is logged in as admin or not.
Since Launch program remediation feature is modified from user privilege to system
privilege, NAC Agent allows UAC Elevation for all Launch program remediation
actions.
For more details, refer to
CSCtw50782
Agent hangs awaiting posture report response from server
Workaround
The issue occurs with Mac OS X 10.7.2 clients.
Kill the CCAAgent Process and then start CCAAgent.app.
Perform the following:
1.
Go to Keychain Access.
2.
Inspect the login Keychain for corrupted certificates, like certificates with the
name “Unknown” or without any data
name “Unknown” or without any data
3.
Delete any corrupted Certificates
4.
From the pull-down menu, select Preferences and click the Certificates tab
5.
Set OCSP and CRL to off.
CSCty51216
Upgrading Mac OS X Agent version 4.9.0.638 to later versions fails.
Workaround
1.
Remove the “CCAAgent”
folder from temporary directory
2.
Reboot the client
3.
Connect to Web login page and install the Agent from there
Table 40
Cisco ISE, Release 1.2, Open Agent Caveats (continued)
Caveat
Description