cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1797
Views
10
Helpful
4
Replies

ISE 802.1x audit

rdediana
Cisco Employee
Cisco Employee

Hello

 

Customer is rolling out 802.1x to 2000 switches, and needs the ability to audit all the access ports to determine the  configuration state of 802.1x  on the port.

 

does ISE have reporting to help with this process?

 

thanks. 

3 Accepted Solutions

Accepted Solutions

Jason Kunst
Cisco Employee
Cisco Employee

It doesn't. This would be a management system like prime. Cisco Active Advisor was something that was supposed to do this as well. Not sure if it does. Trying to find this out

https://www.cisco.com/c/en/us/products/cloud-systems-management/active-advisor/index.html#~stickynav=2


View solution in original post

Thats right Jason.. Outside Prime, dont think we have any readily available Cisco Tools which can do so..

 

https://cway.cisco.com/cli/  -- Check this, but it still manual.. 

 

Next option may be to run a script which basically needs to collect & archive multiple versions and then compare a baseline version vs captured configs and highlight the differences.

View solution in original post

hariholla
Cisco Employee
Cisco Employee

One of our partners Secureview has a tool for this, try it out:

https://www.securview.com/products/cisco-ise-deployment-assistant/

 

-Hari

View solution in original post

4 Replies 4

Jason Kunst
Cisco Employee
Cisco Employee

It doesn't. This would be a management system like prime. Cisco Active Advisor was something that was supposed to do this as well. Not sure if it does. Trying to find this out

https://www.cisco.com/c/en/us/products/cloud-systems-management/active-advisor/index.html#~stickynav=2


Thats right Jason.. Outside Prime, dont think we have any readily available Cisco Tools which can do so..

 

https://cway.cisco.com/cli/  -- Check this, but it still manual.. 

 

Next option may be to run a script which basically needs to collect & archive multiple versions and then compare a baseline version vs captured configs and highlight the differences.

cli analyzer... looks pretty slick. ==> downloading now. 

and thanks for recommendation; will need to continue exploring. as this requires analysis of over 2K switches, something automated is definitely needed. or a whole lot of interns :)

cheers. 

Regan

 

 

hariholla
Cisco Employee
Cisco Employee

One of our partners Secureview has a tool for this, try it out:

https://www.securview.com/products/cisco-ise-deployment-assistant/

 

-Hari