topic Re: ISE command authorization for Stealthwatch in Network Access Control

ISE command authorization for Stealthwatch

chris.allen08 — Mon, 08 Oct 2018 19:43:55 GMT

I am in the process of configuring Tacacs+ (via ISE 2.3) to authenticate users of the Stealthwatch Management Console v6.10 (and desktop client). I see the functional roles with Stealthwatch but where can I find the actual commands I can configure in ISE for the authorization profile? Does anyone know? Has anyone done this?

TIA,

Chris

Re: ISE command authorization for Stealthwatch

Nidhi — Tue, 09 Oct 2018 09:49:19 GMT

consider these links -

https://www.network-node.com/video-training/

https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_0100010.html

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/200208-Configure-ISE-2-0-IOS-TACACS-Authentic.html

Hope this helps.

Re: ISE command authorization for Stealthwatch

chris.allen08 — Tue, 09 Oct 2018 13:01:07 GMT

Thanks for the links. I understand how to build the device command profiles. What I am looking for are the commands that are configured in the profile.

I have configured Prime Infrastructure to authenticate users against TACACS+ (ISE) and Prime Infrastructure provides the ability to copy the commands for each of the roles in PI. This is what I am looking for in Stealthwatch.

Thanks,

Chris

Re: ISE command authorization for Stealthwatch

Sp@wn — Fri, 09 Aug 2019 07:40:20 GMT

Hello Chris,

I am thinking as same as you. Did you find any solution for that?

Thanks,
Volkan