Preview Tool

Cisco Bug: CSCvu91016 - InternalUser Attributes in ATZ policy will fail TACACS+ ASCII Authentication

Last Modified

Oct 06, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.4(0.913) 2.6(0.200) 2.6(0.907) 2.7(0.356)

Description (partial)

After applying 2.6 patch 7, internal users who were successfully authenticating are now failing because the Internal Identity Group is not available on the session. 
The missing attribute that was working prior to patch 7 is:
15048 Queried PIP - InternalUser.IdentityGroup

This affects ISE 2.6 patch 7 and was working in ISE 2.6 patch 6.
The attribute is missing for IOS, WLC and Prime devices but is available when Nexus is the authenticating device.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.