cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1973
Views
3
Helpful
3
Replies

How to register Endpoint in Cisco ISE

Abdul Shuaib
Level 1
Level 1

Hello Technical Support Community,

I am currently working on a project that involves adding endpoints in Cisco Identity Services Engine (ISE), and I'm seeking guidance or assistance from the knowledgeable members of this community.

I have installed Cisco ISE (2.7) on a Linux Virtual Machine. I am able to access the Cisco ISE system and its dashboard but I am unable to configure the endpoints in ISE.

Specifically, I would appreciate any insights, best practices, or step-by-step guides related to adding endpoints in Cisco ISE. If you have hands-on experience or can point me to relevant documentation, it would be immensely helpful.

Additionally, if you have any documents, tutorials, or resources that you think might be beneficial for someone working on a similar task, please feel free to share them. 

Thank you in advance

Best regards,

1 Accepted Solution

Accepted Solutions

thomas
Cisco Employee
Cisco Employee

Endpoints are "added" when ISE sees them attempt to authenticate for the first time.

You may view, add, update attributes, and more in ISE Context Visibility.

image.png

Select the endpoint MAC and view / edit it's attributes.

image.png

It is not clear what you want to "add" other than a MAC address but if you want to do custom attributes and endpoint group assignments, watch our ISE Webinars archived on our CiscoISE YouTube channel which also shows how to import & export endpoints via Context Visibility

 User & Endpoint Custom Attributes 2022/09/06

00:50 Why Custom Attributes?
03:09 Endpoint Profiles, Endpoint Groups versus Custom Attributes
 Defining User Custom Attributes for ISE Internal Users
06:10 Defining Endpoint Custom Attributes and their Common Uses
16:51 Demo: Endpoint Custom Attributes
19:29 Demo: Custom Attribute Policies for IOT Endpoints
39:30 Demo: Context Visibility updates with Python or curl
 Demo: Context Visibilty CSV Export and Import
 Custom Attributes from External Databases: AD, LDAP, ODBC, iPSK Manager, pxGrid Direct

You may also add, update, and delete endpoints via REST API:

▷  2022/10/04
52:34 Demo: Create an endpoint with POST using --data for JSON data or @filename

View solution in original post

3 Replies 3

jonas.resende
VIP Alumni
VIP Alumni

Hi @Abdul Shuaib 

Relevant points you raised.

I think that the first step you need to think when deploy a Cisco ISE is, what is the purpose for this?

Are you going to use Cisco ISE for TACACS or RADIUS? TACACS is for Network Administration, while RADIUS is to provide Network Access for users and endpoints.

You need also to consider in your design, if you are going to deploy that for wireless or wired network.

There are some principles that you need to consider before you only deploy Cisco ISE does not work alone in the network, it works in conjunction with different products/solutions in the network.

There is a dedicated Cisco ISE Community with a lot of contents and information. https://community.cisco.com/t5/security-knowledge-base/cisco-ise-amp-nac-resources/ta-p/3621621

The articles below, has information about the initial setup for Cisco ISE, like you starting from scratch. It's in Portuguese, however you can translate, li

You can find also similar information to the topics above on https://www.linkedin.com/in/jonasresende/recent-activity/articles/, english materials.

At YT channel Plus Labs you find also some contents, hands-on videos in Portuguse.

I hope it help you and give you a direction Cisco ISE. A powerful tool. Great choise!

balaji.bandi
Hall of Fame
Hall of Fame

there is details guide already in the community :

https://community.cisco.com/t5/security-knowledge-base/ise-secure-wired-access-prescriptive-deployment-guide/ta-p/3641515

ISE 2.7 is quite old and end of life also i guess - ISE 3.2 is latest i suggest to work on that version for Long live.

 

I am able to access the Cisco ISE system and its dashboard but I am unable to configure the endpoints in ISE.

 

not sure where did you stuck any screenshot show us what failing ?

end point i can guide you this video :

https://www.youtube.com/watch?v=nCD7LiX-XZU

there are many video cisco-ise (free and that will give you more knowledge)

https://www.youtube.com/cisco-ise

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

thomas
Cisco Employee
Cisco Employee

Endpoints are "added" when ISE sees them attempt to authenticate for the first time.

You may view, add, update attributes, and more in ISE Context Visibility.

image.png

Select the endpoint MAC and view / edit it's attributes.

image.png

It is not clear what you want to "add" other than a MAC address but if you want to do custom attributes and endpoint group assignments, watch our ISE Webinars archived on our CiscoISE YouTube channel which also shows how to import & export endpoints via Context Visibility

 User & Endpoint Custom Attributes 2022/09/06

00:50 Why Custom Attributes?
03:09 Endpoint Profiles, Endpoint Groups versus Custom Attributes
 Defining User Custom Attributes for ISE Internal Users
06:10 Defining Endpoint Custom Attributes and their Common Uses
16:51 Demo: Endpoint Custom Attributes
19:29 Demo: Custom Attribute Policies for IOT Endpoints
39:30 Demo: Context Visibility updates with Python or curl
 Demo: Context Visibilty CSV Export and Import
 Custom Attributes from External Databases: AD, LDAP, ODBC, iPSK Manager, pxGrid Direct

You may also add, update, and delete endpoints via REST API:

▷  2022/10/04
52:34 Demo: Create an endpoint with POST using --data for JSON data or @filename