Solved: Cisco ISE 2.6 posturing supports?

venky82ster · ‎11-03-2019

We are planning to integrate crowd strike v5,umbrella and qualys for posturing endpoints.

Does ISE supports these products? i dont see any document on this over internet.

Please let me know asap.

Marvin Rhoads · ‎11-03-2019

You can always check for a running process on your endpoint as part of a posture check. So that would cover Crowdstrike and Umbrella client software. (Though I would suggest AMP for Endpoints is a richer integration since you get better protection and integration with Umbrella visibility via Cisco Threat Response.)

Additionally, you can integrate vulnerability scanning products such as Qualys via API using what Cisco terms Threat-Centric NAC (TC-NAC).

https://blog.qualys.com/news/2016/07/11/qualys-supports-new-cisco-threat-centric-nac##targetText=Cisco%20has%20integrated%20Qualys%20to,(see%20Figure%201%20below).

https://www.youtube.com/watch?v=EVKXqqfJD_M

View solution in original post

Marvin Rhoads · ‎11-03-2019

You can always check for a running process on your endpoint as part of a posture check. So that would cover Crowdstrike and Umbrella client software. (Though I would suggest AMP for Endpoints is a richer integration since you get better protection and integration with Umbrella visibility via Cisco Threat Response.)

Additionally, you can integrate vulnerability scanning products such as Qualys via API using what Cisco terms Threat-Centric NAC (TC-NAC).

https://blog.qualys.com/news/2016/07/11/qualys-supports-new-cisco-threat-centric-nac##targetText=Cisco%20has%20integrated%20Qualys%20to,(see%20Figure%201%20below).

https://www.youtube.com/watch?v=EVKXqqfJD_M