Menu

US Region

Grandmetric LLC
Brookfield Place Office
200 Vesey Street
New York, NY 10281
EIN: 98-1615498
Phone: +1 302 691 94 10

info@grandmetric.com

EMEA Region

GRANDMETRIC Sp. z o.o.
ul. Metalowa 5, 60-118 Poznań, Poland
NIP 7792433527
+48 61 271 04 43
info@grandmetric.com

Adding Cisco ISE to deployment

Design & Configure

Adding Cisco ISE to deployment

Technology: Network Security
Area: Access and Identity Management
Vendor: Cisco
Software: 2.1
Platform: ISE Virtual Appliance, ISE Physical Appliance

 

  • Adding nodes to ISE deployment
    • For successful registration ISE nodes FQDNs need to be resolvable by DNS and system certificates with Admin purpose have to be known and trusted between each other. If ISE nodes use self-signed certificates you need to exchange the certificates between nodes that you want to add to deployment. Self-signed certificates need to be added to Trusted Certificates store of ISE. If you have enrolled nodes with your internal / corporate CA whole issuer’s chain need to be added to Trusted store.
    • Registration is performed from PAN level – making the PAN to become Primary

 

Cisco ISE node register

 

 

  • Registration process – provide FQDN of the registered node

ISE node registration - FQDN and password

 

 

  • Registration process – if node is found node settings appear. Now the necessary roles and personas must be choosen

ISE node found - Personas settings

 

 

  • Registration process – after registration, new node is being synchronized with deployment. It will take several minutes.

Cisco ISE registration node in progress

 

  • Registration process – synchronization is done when status on both nodes is Connected

ISE registration node connected

Author: Marcin Bialy
 
Grandmetric