Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
303
Views
2
Helpful
1
Replies

How to Migrate Cisco ISE from on premise to Azure cloud?

CleitonNetwork
Level 1
Level 1

‎03-29-2024 05:19 AM

Today I have 2 ISE on premise nodes. I want to migrate 1 node from ISE to Azure cloud
The idea is to have 1 ISE node in the on primese (Primary) and 1 ISE node in the Azure cloud (Secondary).
I have some doubts:
1- Can I use the same onprimeses license in the Azure cloud?
2- Can you configure a primary-secondary pair for automatic failover?
3- What are the best practices for migrating to the Azure cloud?

thanks

Cleiton

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-29-2024 05:26 AM

An ISE VM in Azure uses the same license model as one in your own data center. The VM(s) each require a license for the VM itself. The deployment needs licenses for the respective tier (Essentials / Advantage / Premier) and features (TACACS / Device Admin and IPsec) that you require.

ISE failover can be setup but requires at least 3 VMs. If you are asking about having PSN high availability then yes that is setup from the network device side by pointing to both of your nodes as AAA servers.

For ISE in Azure, please see this document for more details: https://www.cisco.com/c/en/us/td/docs/security/ise/ISE_on_Cloud/b_ISEonCloud/m_ISEonCloudOverview.html

 

Customers Also Viewed These Support Documents