Community Tech-Talk: Introduction to Cisco Identity Services Engine (ISE)

Показать описание

Cisco Identity Services Engine

This tech-talk covers various aspects of Borderless Networks, which is on everyone's mind these days and various challenges involved in it. Cisco Identity Services Engine (ISE) is discussed including how it can ensure the security of networks.

As mentioned in the video, you can download the latest version of the Cisco Tech Support Mobile App (v3.2) by searching for "Cisco Technical Support" from within the iTunes, Google Play or BlackBerry App Stores.

Рекомендации по теме

Комментарии

4 years later...
1. Companies use a lot of contractors or 3PP staff
2. Who are not on the LDAP/AD either as domain user or as domain computers
3. They must authenticate radius/like (PIP) through a captive-portal-like web page.
4. So there is at some point http response spoofing to redirect to the login page
5. so we are talking http, not https. Today browsers ignore https MITM attacks
6. ISE 1.x login page use SSL3 or best case scenarios TLSv1
7. Same thing, most recent browsers ignore the login page
8. Anyconnect uses https to get the config for the 3PP VPN group.
9. Again spoofing https or redirecting in TLSv1 is not working.

Conclusion. ISE ages very fast, users productivity is not increased but decreased. Admins tend to exempt 3PPs and contractors for that reason. The exact opposite of what should happen.

alainpannetier

My question is " Here, ISE needs to communicate with the device to understand about the device and then regulate its connection that it makes with the network. If so, what will happen if ISE cannot communicate with the device but it do can receive infomartion packets send by the device as per its functioning. In brief- can ISE analyse any data pack sent out by a device to learn more about it and then regulate its relation with the network" Hope my question is clear, and sorry if i confused the team.

bonnieabrahamvarghese

Community Tech-Talk: Introduction to Cisco Identity Services Engine (ISE)

Community Tech-Talk: Introduction to Cisco Identity Services Engine (ISE)

Community Tech-Talk: NCS 6008 Software and Hardware Introduction

Community Tech-Talk: Cisco's Compliance Management and Configuration Service

Community Tech Talk: Enhancements in Enhanced Interior Gateway Routing Protocol (EIGRP)

Cisco Tech Talk: Configuring CBW141AC to be used as a Bridge for PSE (Phone, etc.)

Cisco Tech Talk: Cisco Business Dashboard Features

Cisco Tech Talk: Getting to Know Cisco Business Wireless Access Points & What's in the box

Cisco Tech Talk: SNMP for Beginners: Part 1

Cisco Tech Talk: Day 0 Web Setup Via Web

Cisco Tech Talk: RV345P and WAP581

Cisco Tech Talk: Cisco Business Dashboard - Monitoring Dashboard and Wireless Management

Cisco Tech Talk: Roles of Mesh Access Points in a Cisco Business Wireless Network

Community Tech Talks

Cisco Tech Talk – Support Options for Cisco Business Networks

Cisco Tech Talk: Configuring FindIT Probe On A Cisco Switch

Cisco Tech Talk: Resource Allocation on RV260 router

Cisco Tech Talk: Setting Up an Account on the EDOS Web Portal

Cisco Tech Talk: Basic Steps to Secure a Network

Cisco Tech Talk: Channel Management on WAP371

Cisco Tech Talk: Configuring Seamless Roaming on Cisco WAP371

Cisco Tech Talk: Configuring Policy Maps on WAP125 and WAP581

Cisco Tech Talk: Cisco Business Dashboard Lifecycle Management

Cisco Tech Talk: Configure CBD with VMWare Part 2

Cisco Tech Talk: Setting Up An Email Server Behind Cisco RV Series Routers