https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816873#M56417 <P>Starting with ISE 2.0, TACACS support is introduced. If you have a need for TACACS support, then I would recommend upgrading to 2.0. Also if it's difficult to get maintenance/change windows to upgrade, then I would upgrade to 2.0.</P> Tue, 08 Mar 2016 00:06:56 GMT tomyip 2016-03-08T00:06:56Z https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816871#M56415 <P>I am currently running ISE 1.3 in a distribute deployment (2 x PAN/MNT Virtual appliances + 2 x PSN 3495 appliances).&nbsp;</P> <P>I was intent on upgrading to release 1.4.....</P> <P></P> <P>However, I was looking at all of the cool new fatures in 2.0 (some of which seem beneficial). I also noticed that the first round of patches is out for 2.0, which makes me feel a little better about it.&nbsp;</P> <P></P> <P>Are there any show stoppers that I should be nervous about?</P> <P></P> <P>Thanks,</P> <P></P> <P>Phill</P> Mon, 11 Mar 2019 06:18:21 GMT https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816871#M56415 phillip.vansickle 2019-03-11T06:18:21Z https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816872#M56416 <P>If I had a production 1.3 and was upgrading today, I'd go with the latest 1.4 patch unless there was something compelling for my particualr environment in 2.0.</P> <P>The 2.0 patch that's out is very limited in what it fixes. Reference:&nbsp;http://www.cisco.com/c/en/us/td/docs/security/ise/2-0/release_notes/ise20_rn.html#pgfId-611708</P> <P>I've seen a few 2.0 bugs that might worry me in a non-greenfield production environment. (i.e not pushing a redirect dACL proeprly)</P> <P>Once 2.1 or the next patch releease comes out, I might reconsider.</P> <P>A greenfield 2.0 deployment would be more of a thumbs up, subject to pilot deploymnet to test the needed features.</P> <P>Just my opinion....</P> Tue, 08 Dec 2015 03:44:51 GMT https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816872#M56416 Marvin Rhoads 2015-12-08T03:44:51Z https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816873#M56417 <P>Starting with ISE 2.0, TACACS support is introduced. If you have a need for TACACS support, then I would recommend upgrading to 2.0. Also if it's difficult to get maintenance/change windows to upgrade, then I would upgrade to 2.0.</P> Tue, 08 Mar 2016 00:06:56 GMT https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816873#M56417 tomyip 2016-03-08T00:06:56Z https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816874#M56418 <P>2.0 Patch 2 resolved the issue I had mentioned previously.</P> <P>We've done a couple of 2.0 deployments now without any major issues so far. I spoke with the Cisco internal folks and they concur it's ready for production deployments.</P> Tue, 08 Mar 2016 02:58:45 GMT https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816874#M56418 Marvin Rhoads 2016-03-08T02:58:45Z https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816875#M56419 <P>Thanks for your response. 2.0 sounds like it is definitely worth looking into.&nbsp;</P> <P></P> <P>Phill</P> Tue, 08 Mar 2016 15:34:59 GMT https://community.cisco.com/t5/network-access-control/upgrade-path-from-ise-1-3-go-to-1-4-or-straight-to-2-0/m-p/2816875#M56419 phillip.vansickle 2016-03-08T15:34:59Z