Cisco Cisco Identity Services Engine 1.2 Notas de publicación

The following table lists the resolved caveats in Cisco ISE, Release 1.2.1.

CSCum88173

Minimum compliance module version required for configuring SEP 12.1.x 
definition check on Mac OS is 3.6.8616.2 and not 3.6.8501.2.

The minimum Compliance Module version required for configuring AV check in 
NAC support charts for Symantec Endpoint Protection (SEP) 12.1 for Mac OS is 
displayed as 3.5.8501.2. However, the version 3.5.8501.2 has issues in detecting the 
definition date/version for SEP 12.1.x on Mac OS. As this issue is addressed in 
Compliance Module 3.6.8616.2, administrators need to use 3.6.8616.2 as the 
minimum Compliance Module needed for detecting SEP 12.1 definitions on Mac 
OS.

CSCun60071

UI not visible for application launched by NAC agent during remediation

When Cisco ISE is configured to launch an application as a remediation, the 
application gets launched and is available in the task manager, but the UI is not 
visible to the user, irrespective of whether the user is logged in as admin or not. 
Since Launch program remediation feature is modified from user privilege to system 
privilege, NAC Agent allows UAC Elevation for all Launch program remediation 
actions.

For more details, refer to 

CSCtw50782

Agent hangs awaiting posture report response from server

The issue occurs with Mac OS X 10.7.2 clients.

Kill the CCAAgent Process and then start CCAAgent.app.

Perform the following:

Go to Keychain Access.

Inspect the login Keychain for corrupted certificates, like certificates with the 
name “Unknown” or without any data

Delete any corrupted Certificates

From the pull-down menu, select Preferences and click the Certificates tab

Set OCSP and CRL to off.

CSCty51216

Upgrading Mac OS X Agent version 4.9.0.638 to later versions fails.

Remove the “CCAAgent”

 

folder from temporary directory

Reboot the client

Connect to Web login page and install the Agent from there