Cisco ISE: BYOD troubleshooting

Short checklist related to troubleshooting BYOD failures from Cisco.

On the ISE side enable ISE debug logging. Complete these steps in order to view the ISE log:

  1.  Navigate to Administration > Logging > Debug Log Configuration, and select the appropriate ISE policy node.
  2. Set the client and provisioning logs to debug or trace, as required. Reproduce the problem and document relevant seed info in order to facilitate searching, such as MAC, IP, and user.
  3. Navigate to Operations > Download Logs, and select the appropriate ISE node.
  4. On the Debug Logs tab, download the logs named ise-psc.log to the desktop.
  5. Use an intelligent editor, such as Notepad ++ in order to parse the log files.
  6. When the issue has been isolated, then return the log levels to the default level.

On the client side, the following is log locations based on device type:

Android:

  • Look for /sdcards/downloads/spw.log file in order to view the client-side logs for Android applications.

Windows:

  • Look for %temp%\spwProfileLog.txt (ex: C:\Users\admin\AppData\Local\Temp\spwProfileLog.txt) in order to view the client-side logs.

MAC OSX:

  • Use the Console application, and look for the SPW process and System.log file.

iOS:

Table below reflects BYOD certificate store based on endpoint platform.

Leave a reply:

Your email address will not be published.

Site Footer

Sliding Sidebar