02-19-2015 05:31 AM - edited 03-10-2019 10:28 PM
We have a requirement to deploy ISE for about 2500 users and planning to use basic AAA service and advise on how many nodes and license we need to get will be very helpfull
02-19-2015 07:18 AM
do you want to go with physical appliance or virtual, are you planning for a central or distributed deployment . If you are looking for physical appliance then you have 4 x SNS 3415 with HA
2x Admin/Mnt (HA)
2x PSN
and for virtual you can get ISE-VM-K9 x 4
02-19-2015 05:53 PM
The design proposed by Venkatesh is ideal but not required. With 2 x 3415 appliances (physical or virtual) you can have up to 5,000 concurrent endpoints. You would run all personas (Admin, monitor and policy services) and will have redundancy. If your environment grows beyond 5,000 endpoints then you would either need to move to the 3495 appliances or consider the distributed deployment that was suggested by Venkatesh.
Thank you for rating helpful posts!
02-19-2015 07:51 PM
Deployment sizing guidance in ISE docs here: http://www.cisco.com/c/en/us/td/docs/security/ise/1-3/installation_guide/b_ise_InstallationGuide13/b_ise_InstallationGuide12_chapter_00.html#ID-1413-000000dc
If centralized deployment, then all RADIUS served out of central PSNs, so can more easily control per-PSN load.
Licensing facts:
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide