Solved: ISE Node Replication to Azure

dancall@cisco.com · ‎08-25-2017

Hey Team, I have a customer that is interested in replicating an ISE node to Azure. Everything we are hearing from TAC indicates it is possible in theory, but we can't find any documentation or real world deployments. Does anyone have any customers doing this?

Jason Kunst · ‎08-25-2017

FYI this is not officially supported, I am reaching out to our PM

General guidance is if it installs on any of the VM infrastructure supported by ISE then should work but heard there were issues running an ISE deployment (multiple VMs) in the cloud and that was being investigated.

Cisco Identity Services Engine Installation Guide, Release 2.2 - System Requirements [Cisco Identity Services Engine] -…

View solution in original post

Jason Kunst · ‎08-25-2017

FYI this is not officially supported, I am reaching out to our PM

General guidance is if it installs on any of the VM infrastructure supported by ISE then should work but heard there were issues running an ISE deployment (multiple VMs) in the cloud and that was being investigated.

Cisco Identity Services Engine Installation Guide, Release 2.2 - System Requirements [Cisco Identity Services Engine] -…

paul · ‎08-25-2017

Yeah I would think if the following are all true:

DNS (forward and reverse) is setup correctly to resolve the hostname and IP of the Azure node.
Network is setup to allow ISE synchronization and inter-node communication to the Azure node.
Latency to Azure node is less than 300 ms.

If all those are true, then at the end of the day I have one IP talking to another IP and it should work. Like Jason said, support may be another issue, but technically I can't see why it wouldn't work.