Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1480
Views
10
Helpful
4
Replies

ISE 802.1x audit

Go to solution
rdediana
Cisco Employee
Cisco Employee

‎11-13-2018 08:03 AM

Hello

 

Customer is rolling out 802.1x to 2000 switches, and needs the ability to audit all the access ports to determine the  configuration state of 802.1x  on the port.

 

does ISE have reporting to help with this process?

 

thanks. 

0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎11-13-2018 08:10 AM - edited ‎11-14-2018 12:32 PM

It doesn't. This would be a management system like prime. Cisco Active Advisor was something that was supposed to do this as well. Not sure if it does. Trying to find this out

https://www.cisco.com/c/en/us/products/cloud-systems-management/active-advisor/index.html#~stickynav=2


View solution in original post

Go to solution
mnagired
Cisco Employee
Cisco Employee
In response to Jason Kunst

‎11-14-2018 12:11 PM

Thats right Jason.. Outside Prime, dont think we have any readily available Cisco Tools which can do so..

 

https://cway.cisco.com/cli/  -- Check this, but it still manual.. 

 

Next option may be to run a script which basically needs to collect & archive multiple versions and then compare a baseline version vs captured configs and highlight the differences.

View solution in original post

Go to solution
hariholla
Cisco Employee
Cisco Employee

‎11-15-2018 12:40 AM

One of our partners Secureview has a tool for this, try it out:

https://www.securview.com/products/cisco-ise-deployment-assistant/

 

-Hari

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎11-13-2018 08:10 AM - edited ‎11-14-2018 12:32 PM

It doesn't. This would be a management system like prime. Cisco Active Advisor was something that was supposed to do this as well. Not sure if it does. Trying to find this out

https://www.cisco.com/c/en/us/products/cloud-systems-management/active-advisor/index.html#~stickynav=2


Go to solution
mnagired
Cisco Employee
Cisco Employee
In response to Jason Kunst

‎11-14-2018 12:11 PM

Thats right Jason.. Outside Prime, dont think we have any readily available Cisco Tools which can do so..

 

https://cway.cisco.com/cli/  -- Check this, but it still manual.. 

 

Next option may be to run a script which basically needs to collect & archive multiple versions and then compare a baseline version vs captured configs and highlight the differences.

Go to solution
rdediana
Cisco Employee
Cisco Employee
In response to mnagired

‎11-14-2018 08:00 PM

cli analyzer... looks pretty slick. ==> downloading now. 

and thanks for recommendation; will need to continue exploring. as this requires analysis of over 2K switches, something automated is definitely needed. or a whole lot of interns :)

cheers. 

Regan

 

 

0 Helpful

Go to solution
hariholla
Cisco Employee
Cisco Employee

‎11-15-2018 12:40 AM

One of our partners Secureview has a tool for this, try it out:

https://www.securview.com/products/cisco-ise-deployment-assistant/

 

-Hari

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents