topic Enterprise Users - How are you using ISE? in Network Access Control https://community.cisco.com/t5/network-access-control/enterprise-users-how-are-you-using-ise/m-p/2784473#M41813 <P>Wanted to get a feel as to how those of you in the Enterprise space (maybe 1000+ employees) are using ISE.&nbsp; Primarily for guests?&nbsp; Special network needs or have you rolled it out to every port on your network?</P> <P>Am evaluating various deployment scenarios and considering the associated pain that might go along with each.&nbsp; Potentially could start with a simple "trusted" device vs. "un-trusted" device where "trusted" means there are valid credentials provided PLUS an org provided certificate installed on the machine and provided during authentication.&nbsp; That might be too cumbersome, however and could look at just checking for the presence of a registry key or equivalent depending on the platform.&nbsp; This would still be messy with mobile devices I assume, but might be a good starting point.</P> <P>Interested to hear how those of you are using ISE In the wild, however.</P> Mon, 11 Mar 2019 06:15:00 GMT rvandolson 2019-03-11T06:15:00Z Enterprise Users - How are you using ISE? https://community.cisco.com/t5/network-access-control/enterprise-users-how-are-you-using-ise/m-p/2784473#M41813 <P>Wanted to get a feel as to how those of you in the Enterprise space (maybe 1000+ employees) are using ISE.&nbsp; Primarily for guests?&nbsp; Special network needs or have you rolled it out to every port on your network?</P> <P>Am evaluating various deployment scenarios and considering the associated pain that might go along with each.&nbsp; Potentially could start with a simple "trusted" device vs. "un-trusted" device where "trusted" means there are valid credentials provided PLUS an org provided certificate installed on the machine and provided during authentication.&nbsp; That might be too cumbersome, however and could look at just checking for the presence of a registry key or equivalent depending on the platform.&nbsp; This would still be messy with mobile devices I assume, but might be a good starting point.</P> <P>Interested to hear how those of you are using ISE In the wild, however.</P> Mon, 11 Mar 2019 06:15:00 GMT https://community.cisco.com/t5/network-access-control/enterprise-users-how-are-you-using-ise/m-p/2784473#M41813 rvandolson 2019-03-11T06:15:00Z Guest access and posture https://community.cisco.com/t5/network-access-control/enterprise-users-how-are-you-using-ise/m-p/2784474#M41814 <P>Guest access and posture assessment. We also use it for dynamic switch port configuration after assessment takes place. This is because we have a bunch of VLAN specific devices that dont move around too much but they do move aroudn and it take a lot of work away from the administrators to reconfigure a switch port to account for a new device on a new VLAN.</P> <P></P> <P>Please rate useful posts and mark answers as correct if applicable.</P> Wed, 18 Nov 2015 14:54:31 GMT https://community.cisco.com/t5/network-access-control/enterprise-users-how-are-you-using-ise/m-p/2784474#M41814 zdesignstudio 2015-11-18T14:54:31Z