06-18-2018 03:42 AM
Hello,
Could you please let me know do we have any whitepaper/document around when we should consider using ISE built-in CA authority?
What are cons and pros for that - if any?
Specially in the environments when we already have deployed internal CA authority in the intranet.
Are there any considerations we should have in mind then if we should use CA on ISE or internal standalone CA?
Many Thanks
Ivana
Solved! Go to Solution.
06-19-2018 04:06 AM
Yes recommend internal
Closed loop meaning everything in one software. ISE has everything you need. Why would you complicate by adding more pieces
06-18-2018 08:09 AM
I use Internal CA on ISE when using BYOD.
For use cases like EAP-TLS for workstation better to use internal CA.
06-18-2018 08:18 AM
Internal ca should be used for the following reasons.
It’s built in
On out of box
Closed loop
Easy to configure and troubleshoot
ISE management of all pieces of clients doing cert auth
06-19-2018 02:10 AM
Hello Jason,
If I understand you well (apologies if not) you are recommending built-in CA in ISE?
What do you please imply with “closed loop” ?
Many Thanks
Ivana
Ivana Mihajlovic
Customer Success Manager
Cisco CCIE Security, ISC2 CISSP, ISC2 CCSP, AWS Certified Solution Architect - Associate, TOGAF 9, ITIL, Proact BOST Bronze, Master Project Management
Cisco Systems, Inc.
Pegasus Parc De kleetlaan 6a
DIEGEM 1831 Belgium
imihajlo@cisco.com
06-19-2018 04:06 AM
Yes recommend internal
Closed loop meaning everything in one software. ISE has everything you need. Why would you complicate by adding more pieces
06-19-2018 07:34 AM
Thanks Jason
Regards
Ivana
Ivana Mihajlovic
Customer Success Manager
Cisco CCIE Security, ISC2 CISSP, ISC2 CCSP, AWS Certified Solution Architect - Associate, TOGAF 9, ITIL, Proact BOST Bronze, Master Project Management
Cisco Systems, Inc.
Pegasus Parc De kleetlaan 6a
DIEGEM 1831 Belgium
imihajlo@cisco.com
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide