https://community.cisco.com/t5/network-access-control/ise/m-p/4133063#M562235 <P>It's probably a matter of opinon and experience on which is more complex to configure. Posture assessment is more secure, it is usually configured to compliment 802.1x. Without 802.1x you authenticate the user to the network, combine that with posture assessment you determine whether the user is authenticating to the network using a laptop that complies with the organisation's security policy (i.e. is AV, AM or FW installed and running).</P> <P>&nbsp;</P> <P>Refer to the Posture configuration guide for more information.</P> <P><A href="https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273" target="_self">https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273</A></P> <P>&nbsp;</P> <P>Client provisioning is used to deploy the agent to the connecting devices.</P> <P>&nbsp;</P> <P>HTH</P> Mon, 10 Aug 2020 13:28:15 GMT Rob Ingram 2020-08-10T13:28:15Z https://community.cisco.com/t5/network-access-control/ise/m-p/4132495#M562216 <P>Hi gentlemen,</P><P>What do these terms do?&nbsp; &nbsp;1. dot1x&nbsp; &nbsp; 2. Posture Assessment</P><P>Can FirePower do what ISE does?</P><P>Thanks</P> Sat, 08 Aug 2020 14:28:46 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4132495#M562216 miracle_david@yahoo.com 2020-08-08T14:28:46Z https://community.cisco.com/t5/network-access-control/ise/m-p/4132514#M562217 <P>Hi,</P> <P>802.1X is used to authenticate devices/users to a wired or wireless network.</P> <P><A href="https://en.wikipedia.org/wiki/IEEE_802.1X" target="_self">https://en.wikipedia.org/wiki/IEEE_802.1X</A></P> <P>&nbsp;</P> <P>Posture assessment is used in ISE to determine the state of a device, for example whether it is running Anti-Virus, Anti-Malware or Personal firewall before permitted access to the network.</P> <P><A href="https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273" target="_self">https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273</A></P> <P>&nbsp;</P> <P>No Firepower is a Firewall, this is a separate solution to ISE, it does not perform 802.1x authentication.</P> <P>&nbsp;</P> <P>HTH</P> Sat, 08 Aug 2020 15:33:18 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4132514#M562217 Rob Ingram 2020-08-08T15:33:18Z https://community.cisco.com/t5/network-access-control/ise/m-p/4133050#M562234 Thanks for your great reply. Is there any similarity between "Posture Assessment" &amp; "dot1x"? Which one is more complex to deploy? Which one has more stricter features for security?<BR />What does Client Provisioning do? Mon, 10 Aug 2020 13:08:56 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4133050#M562234 miracle_david@yahoo.com 2020-08-10T13:08:56Z https://community.cisco.com/t5/network-access-control/ise/m-p/4133063#M562235 <P>It's probably a matter of opinon and experience on which is more complex to configure. Posture assessment is more secure, it is usually configured to compliment 802.1x. Without 802.1x you authenticate the user to the network, combine that with posture assessment you determine whether the user is authenticating to the network using a laptop that complies with the organisation's security policy (i.e. is AV, AM or FW installed and running).</P> <P>&nbsp;</P> <P>Refer to the Posture configuration guide for more information.</P> <P><A href="https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273" target="_self">https://community.cisco.com/t5/security-documents/ise-posture-prescriptive-deployment-guide/ta-p/3680273</A></P> <P>&nbsp;</P> <P>Client provisioning is used to deploy the agent to the connecting devices.</P> <P>&nbsp;</P> <P>HTH</P> Mon, 10 Aug 2020 13:28:15 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4133063#M562235 Rob Ingram 2020-08-10T13:28:15Z https://community.cisco.com/t5/network-access-control/ise/m-p/4133329#M562248 <P>Since you are new to ISE and access control, I would recommend watching some of our past <A href="http://cs.co/ise-webinars" target="_self">ISE Webinars</A> that cover these topics:</P> <UL> <LI class="title style-scope ytd-video-primary-info-renderer">&nbsp;<A href="https://youtu.be/nXHK1fKfLBM?list=PLvBZXH_IO6nCu9p49Tl1LE4kY6mpyz1eN" target="_self">ISE Secure Wired Access Webinar</A>&nbsp; (<A href="https://youtu.be/nXHK1fKfLBM?list=PLvBZXH_IO6nCu9p49Tl1LE4kY6mpyz1eN&amp;t=1020" target="_self">802.1X is at 17:00</A>)</LI> <LI class="title style-scope ytd-video-primary-info-renderer"><A href="https://www.youtube.com/watch?v=LnhHk4jKBZo&amp;list=PLvBZXH_IO6nCu9p49Tl1LE4kY6mpyz1eN" target="_self">Posture and Compliance Webinar</A></LI> </UL> <P>&nbsp;</P> Mon, 10 Aug 2020 20:44:59 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4133329#M562248 thomas 2020-08-10T20:44:59Z https://community.cisco.com/t5/network-access-control/ise/m-p/4133554#M562257 Hi sir, I'm very gratitude &amp; grateful for sharing webinars &amp; considering my query. If you have other webinars regarding security like FirePower or other ISE features I'd be glad to watch them.<BR />God bless you! Tue, 11 Aug 2020 06:47:26 GMT https://community.cisco.com/t5/network-access-control/ise/m-p/4133554#M562257 miracle_david@yahoo.com 2020-08-11T06:47:26Z