https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486591#M570420 <P>A new feature in ISE 3.1 allows you to create alarms when a particular Authorization Profile is applied to a session. See the <A href="https://www.cisco.com/c/en/us/td/docs/security/ise/3-1/release_notes/b_ise_31_RN.html#Cisco_Concept.dita_d4082a97-032d-4d47-9b23-11a2963106cc" target="_blank" rel="noopener">Release Notes</A> for more information.</P> <P>With ISE versions prior to 3.1, you would need to leverage an external syslog/SIEM solution (like Splunk) that could generate an alarm based on values in the Authentication syslog events.</P> Fri, 15 Oct 2021 02:49:14 GMT Greg Gibbs 2021-10-15T02:49:14Z https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486561#M570418 <P>Hi,</P><P>&nbsp; &nbsp;We are using Cisco ISE for device profiling (corporate machines, printers, phones, video conferencing units). I would like to know if there is a mechanism for ISE to generate and send an alert if a device is moved to Quarantine?</P><P>&nbsp;</P><P>Thanks,</P><P>Obaid</P> Fri, 15 Oct 2021 00:49:52 GMT https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486561#M570418 obaid.noor2 2021-10-15T00:49:52Z https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486591#M570420 <P>A new feature in ISE 3.1 allows you to create alarms when a particular Authorization Profile is applied to a session. See the <A href="https://www.cisco.com/c/en/us/td/docs/security/ise/3-1/release_notes/b_ise_31_RN.html#Cisco_Concept.dita_d4082a97-032d-4d47-9b23-11a2963106cc" target="_blank" rel="noopener">Release Notes</A> for more information.</P> <P>With ISE versions prior to 3.1, you would need to leverage an external syslog/SIEM solution (like Splunk) that could generate an alarm based on values in the Authentication syslog events.</P> Fri, 15 Oct 2021 02:49:14 GMT https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486591#M570420 Greg Gibbs 2021-10-15T02:49:14Z https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486594#M570421 <P>Thanks Greg. This helps</P> Fri, 15 Oct 2021 02:59:30 GMT https://community.cisco.com/t5/network-access-control/ise-quarantine-alerts/m-p/4486594#M570421 obaid.noor2 2021-10-15T02:59:30Z