Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2317
Views
10
Helpful
3
Replies

Re-Hosting ISE Licenses

Go to solution
siddhesh.parab@orange.com1
Level 1
Level 1

‎05-10-2020 07:26 AM

Hello Team,

 

we have below setup of ISE nodes on VM.we are planning to upgrade ISE nodes on v2.6 using Re-image method

 

Region 1 (DC)---> 6 ISE nodes (2 ADM/2MnT/2PSN)

Region 2--------> 2 PSN 

Region 3--------> 2 PSN 

Region 4--------> 2 PSN 

 

Our plan is as below.

1. sec ADM

2. sec MnT

3. PSN (one by one region wise)

4. pri. MnT

5. pri. ADM

 

Question is related to when we should re-host the licenses :- (we have traditional licenses)

1. our plan is , post upgarding (Re-imaging) sec adm & sec MnT,  we will re-host licenses to new deployment however by doing so will my traffic of old setup hamper ?? (i.e. if i re-host licenses at this stage will my users still be able to use licenses in old setup)

 

2. Need your suggestion.. At which stage should i re-host the licenses ??

 

Thanks in advanced.

 

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
marce1000
VIP
VIP

‎05-10-2020 09:08 AM

 

 https://community.cisco.com/t5/security-documents/how-do-i-rehost-my-existing-ise-license-s-onto-a-new-or/ta-p/3632248

 M,



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

View solution in original post

0 Helpful

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎05-10-2020 10:49 AM

My suggestion would be to rehost them now, by switching the existing deployment to smart licensing. Then when you go to upgrade it's easy to just register the deployment to the smart licensing server and be done.

View solution in original post

3 Replies 3

Go to solution
marce1000
VIP
VIP

‎05-10-2020 09:08 AM

 

 https://community.cisco.com/t5/security-documents/how-do-i-rehost-my-existing-ise-license-s-onto-a-new-or/ta-p/3632248

 M,



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
Damien Miller
VIP Alumni
VIP Alumni

‎05-10-2020 10:49 AM

My suggestion would be to rehost them now, by switching the existing deployment to smart licensing. Then when you go to upgrade it's easy to just register the deployment to the smart licensing server and be done.

Go to solution
Arne Bier
VIP
VIP
In response to Damien Miller

‎05-12-2020 03:42 AM

I'll second what @Damien Miller said about Smart Licensing. No more licensing pain. Better sleep at night etc. :-)

 

Granted, if the customer doesn't allow internet access from the ISE PAN then it could throw a spanner in the works. But even the most paranoid of organisations can implement this using the https proxy function in ISE to ensure that Cisco Call Home / Smart Licensing goes via the authenticated proxy. Failing that, ask your web proxy guys (if you use proxy ...) to add the IP addresses of the PAN nodes into an allow list, to allow them to access tools.cisco.com (IIRC)

Customers Also Viewed These Support Documents