Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
285
Views
0
Helpful
2
Replies

Cisco ISE in distributed edeployment , All PSN have same Policy sets ?

Go to solution
palani2010
Level 1
Level 1

‎01-31-2025 07:55 AM

Cisco ISE in distributed edeployment , All PSN have same Policy sets ?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎01-31-2025 07:56 AM

@palani2010 yes, the PSN nodes in a distributed cluster would have the same policy sets.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Rob Ingram
VIP
VIP

‎01-31-2025 07:56 AM

@palani2010 yes, the PSN nodes in a distributed cluster would have the same policy sets.

0 Helpful

Go to solution
owbhat
Cisco Employee
Cisco Employee

‎02-01-2025 06:09 AM

Yes, @palani2010 
In a Cisco ISE distributed deployment, all Policy Service Nodes (PSNs) share the same Policy Sets because:

  • Policies are centrally managed on the Primary Administration Node (PAN) and then replicated to all PSNs.
  • This ensures consistent policy enforcement across all PSNs in the deployment.
  • PSNs are stateless regarding policies—they only apply the rules received from PAN.

PAN as Central Management in Cisco ISE

  • The Primary Administration Node (PAN) is responsible for configuration, policy management, logging, and reporting.
  • All changes made on PAN are pushed to other nodes (PSNs, Secondary PAN).
  • The Secondary PAN remains passive and takes over only if promoted.
0 Helpful
Customers Also Viewed These Support Documents