02-06-2014 11:43 PM - edited 03-10-2019 09:22 PM
Hi,
One of the major concerns regarding security solutions is the way they interact. ISE specifically, is compatible with most of the SIEMs available today, as stated by Cisco (http://www.cisco.com/en/US/prod/vpndevc/ecosystem.html).
In my particular case, I want to integrate ISE with ArcSight.
For ArcSight to correctly parse the syslog messages that ISE sends, you have to install/configure an ISE smartconnector.
What I'm missing though is how does ArcSight instructs ISE to take specific actions on users/devices that are involved in a network attack.
Please check: http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5712/ps11640/at_a_glance_c45-728401.pdf
SIEM/TD partners may utilize ISE as a conduit for taking mitigation actions within the Cisco network infrastructure. SIEM/TD platforms can instruct ISE to undertake quarantine or access-block actions on users and/or device based on ISE policies that have been defined for such actions.
Thanks!
Octavian
Solved! Go to Solution.
02-12-2014 07:26 PM
There is no such docs available till now for ArcSight integration with ISE. I also found only these two links:
02-12-2014 07:26 PM
There is no such docs available till now for ArcSight integration with ISE. I also found only these two links:
02-13-2014 03:28 AM
It seems you're right. Cisco will publish the details regarding ISE/SIEM integration late this summer.
06-17-2015 09:30 AM
Is there a document available for the integration of ArcSight SIEM with Cisco ISE which includes the milestones and the success criteria? I am not able to find anything specific.
08-19-2015 01:57 AM
I don' think there will be any (personal opinion). Some Cisco moderator should answer this one.
If you ask me, all the effort is put into developing pxGrid. If you environment does not work with pxGrid, that's it. It will not work.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide