Solved: Re: ISE comply with ISO/PCI DSS/etc...

My Community · ‎05-22-2022

1/. Does Cisco ISE comply with ISO/PCI DSS/etc? If yes, can you share which point?

2/. Does Cisco ISE have Reports for HIPPA/TRM/ISO/PCI DSS/PDR compliance format?

3/. How does Cisco ISE provide protection for Data at Rest and Data in Motion? Please Help to provide us reference document

thomas · ‎05-26-2022

See ISE Security Best Practices (Hardening) for some of your security questions.

There are no compliance standard-specific reports.

View solution in original post

ahollifield · ‎05-23-2022

Are you asking for compliance of ISE itself? Or ISE's role in a network for enforcing such compliance? If not asking about ISE itself, this highly depends on how ISE is configured.

My Community · ‎05-23-2022

We are preferred to ISE itself. we are not asking for an enforcement compliance policy.

Pls, check the question above.

ahollifield · ‎05-23-2022

So maybe I am totally misunderstanding the ask here since I am not a compliance expert but here goes:

ISO - which ISO standard?
PCI - ISE doesn't accept or handle credit card information so this seems to not apply here
HIPPA reports? ISE doesn't handle PHI so this seems to not apply here either
Data in motion - RADIUS is not an encrypted protocol; you can use RADIUS DTLS or IPSec if full encryption is needed for NAD traffic. TACACS+ is encrypted but uses what are considered weak algorithms by today's standards.
Data at rest - ISE does not encrypt its local disks

thomas · ‎05-26-2022

See ISE Security Best Practices (Hardening) for some of your security questions.

There are no compliance standard-specific reports.