Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
113
Views
0
Helpful
1
Replies

ISE TrusSec Default SGTs

packet2020
Level 1
Level 1

‎04-27-2025 01:29 PM

Hi All,

I'm currently looking at deploying CTS and noticed that ISE provides a number of default SGTs in the base install. As the number of SGTs increases the size and complexity of the policy matrix, I could ideally do with removing some of the default SGTs except for Unknown and TrustSec_Device. Is this ok to do or will this cause any issues?

0 Helpful
1 Reply 1

Greg Gibbs
Cisco Employee
Cisco Employee

‎04-27-2025 05:40 PM

If ISE allows you to delete the Security Groups, it should not cause any issues. However, you can create custom matrix views to reduce the matrix to only the groups you are interested in seeing.

https://www.cisco.com/c/en/us/td/docs/security/ise/3-3/admin_guide/b_ise_admin_3_3/b_ISE_admin_33_segmentation.html#task_B8B1031871664DD6B3B58906CAE9485E

 

0 Helpful
Customers Also Viewed These Support Documents