Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
570
Views
0
Helpful
2
Replies

Envoy integration with ISE

Go to solution
prathapss
Level 1
Level 1

‎12-19-2023 07:19 AM

Hi,

We are planning to integrate the Envoy tool to integrate with ISE to automate the guest authentication.

For this, in the Envoy guide it require a public IP for the ISE admin node.

Our setup is behind a firewall and we would need to allow the specific rule in the firewall for the Envoy to communicate.

Is there any risk associated with this setup and any impact to be expected if anyone is having experience with integrating the Envoy tool.

 

Thanks,

Prathap

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ahollifield
VIP
VIP

‎12-19-2023 12:14 PM

I've integrated Envoy with other NAC providers but not with ISE specifically.  There is always risk associated to opening anything up directly to the internet.  That being said proper firewall policy, inspection, etc should mitigate that risk to some degree.  Also be sure to keep your ISE deployment upgraded and patched.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
ahollifield
VIP
VIP

‎12-19-2023 12:14 PM

I've integrated Envoy with other NAC providers but not with ISE specifically.  There is always risk associated to opening anything up directly to the internet.  That being said proper firewall policy, inspection, etc should mitigate that risk to some degree.  Also be sure to keep your ISE deployment upgraded and patched.

0 Helpful

Go to solution
gho21
Level 1
Level 1

‎02-02-2024 06:37 AM

You can limit the risk by only allowing the IPs provided in the Envoy documentation to access the ISE node externally. 

0 Helpful
Customers Also Viewed These Support Documents