Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
272
Views
2
Helpful
2
Replies

ISE Policy to Protect vCenter

jeaston
Level 1
Level 1

‎06-24-2024 01:38 PM

New to ISE and looking for some direction here.

I'd like to limit access to certain assets to a few jump servers. Not all traffic is going through a firewall

How can i control what devices can access things like vCenter, backup devices, IPMI interfaces?

Thanks in advan

0 Helpful
2 Replies 2

Arne Bier
VIP
VIP

‎06-24-2024 01:46 PM

You should look in each of these applications to see if there is an option to restrict the access based on host (e.g. jumphost IPs) or network ranges (e.g. network management subnets). ISE supports this, and I have seen it on various other applications. Failing that, you'd have to put all those "assets" behind a firewall and make the access rules on the FW. 

Rob Ingram
VIP
VIP

‎06-24-2024 01:46 PM - edited ‎06-24-2024 02:02 PM

@jeaston well ISE can push down a Downloadable ACL (DACL) or TrustSec SGACL these would be enforced somewhere on the network such as router, switch or firewall to permit/deny traffic.

Customers Also Viewed These Support Documents