Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
501
Views
2
Helpful
4
Replies

2 Node Virtual ISE Deployment

Go to solution
thenetadmin
Level 1
Level 1

‎11-30-2024 03:58 AM

Hello,

We are deploying a 2 node Cisco ISE  in a virtual environment for single site/location and integrate it with DNA Center as well.

Node 1: PAN, MNT, PSN & PxGrid

Node 2: PAN, MNT, PSN & PxGrid

 

Any best practices to be followed for distributing personas across the two nodes?

 

Thank you in advance for your insights!

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Torbjørn
VIP
VIP
In response to thenetadmin

‎12-13-2024 06:26 AM - edited ‎12-13-2024 06:27 AM

No problem @thenetadmin! Let's say your nodes are named A and B. Your deployment should look like this:

  • Administration: Should be enabled on both, but A should be primary
  • Montoring: Should be enabled on both, but B should be primary
  • Policy: Should be enabled on both
  • PxGrid: Should be enabled on both

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev

View solution in original post

4 Replies 4

Go to solution
Torbjørn
VIP
VIP

‎11-30-2024 12:19 PM - edited ‎11-30-2024 11:55 PM

Hello @thenetadmin,

You should see the following documentation regarding this: https://www.cisco.com/c/en/us/td/docs/security/ise/3-0/install_guide/b_ise_InstallationGuide30/b_ise_InstallationGuide30_chapter_1.html#node-types-and-personas-in-distributed-deployments  

You should keep your primary PAN node and primary MNT node separate to distribute load more evenly. The PSN persona is "primary less" and should be enabled on both nodes. The PxGrid service should be enabled on both nodes, but be aware that it relies on having a functioning primary PAN node.

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev

Go to solution
thenetadmin
Level 1
Level 1

‎12-13-2024 06:02 AM

@Torbjørn Sorry for the late reply.

With 2 node deployment, how each personas should be distributed as best practice?

0 Helpful

Go to solution
Torbjørn
VIP
VIP
In response to thenetadmin

‎12-13-2024 06:26 AM - edited ‎12-13-2024 06:27 AM

No problem @thenetadmin! Let's say your nodes are named A and B. Your deployment should look like this:

  • Administration: Should be enabled on both, but A should be primary
  • Montoring: Should be enabled on both, but B should be primary
  • Policy: Should be enabled on both
  • PxGrid: Should be enabled on both

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev

Go to solution
thenetadmin
Level 1
Level 1

‎12-13-2024 06:41 AM

Thank you so much. @Torbjørn Appreciated

0 Helpful
Customers Also Viewed These Support Documents