12-08-2020 03:48 PM - edited 12-08-2020 03:48 PM
I have a customer running ISE 2.4 looking to upgrade. The current ISE golden image version is 2.7. But 3.0 is also available and it seems this will be the long term build going forward. I understanding the licensing implications of 3.0.
Based on this https://www.cisco.com/c/en/us/products/collateral/security/identity-services-engine/bulletin-c25-740738.html 2.7 will have EoL notice in 6 more months and end of sw maintenance in 2 years. So torn between whether to go with 2.7 or 3.0. Upgrade planned for early next year.
12-08-2020 05:46 PM
I might go with 3.0 for a brand new build, but I would still go with 2.7 for any production upgrades. It really comes down to the risk tolerance, if there isn't an immediate need for 3.0 features, then I would play it safe.
12-09-2020 03:03 AM
12-09-2020 04:45 AM
- Hmmm, somewhat aligned with other comments : ISE is usually very business critical , then a new dot-zero release and no patched yet -> no way. If patches start appearing I might relax my view.
M.
12-09-2020 05:14 AM
Agreeing on the 2.7 comments. 2.7p2 is what I would recommend right now at this point in time today. Note that patch3 is due to hit the street in the very near future. I have also heard 3.0 currently has quite a few bugs and as mentioned already integration issues. HTH!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide