Guest

Preview Tool

Cisco Bug: CSCvs70863 - ISE 2.6 - Cannot enable FIPS if Default Device Admin has been modified

Last Modified

Jun 19, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.6(0.156)

Description (partial)

Symptom:
Cannot enable FIPS in ISE 2.6.  Receive error message below for the Allowed Protocols "Default Device Admin" list containing unsupported protocols.

The following "Allowed Protocols" are configured to use non-FIPS compliant protocols. FIPS can not be enabled until the ?Allowed Protocols? are deleted or they are edited to used only FIPS compliant protocols.  To use TACACS+ with FIPS, use ?Default Device Admin? in Policy
*Default Device Admin

Conditions:
ISE 2.6
Default Device Admin allowed protocols have been modified
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.