cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

219
Views
0
Helpful
0
Replies
Highlighted
Beginner

tacacs + metrics on non-dedicated ISE servers

Hi all,


As part of an ACS migration to ISE, I am looking for metrics on the sizing of ISE servers which will initially carry the 3 roles Adm, MnT and PSN, for functions only Tacacs + (especially) and Radius (occasionally) for administration of 3600 devices.

On this link : https://community.cisco.com/t5/security-documents/ise-tacacs-deployment-amp-sizing-guidance/ta-p/3612253, I only saw information in terms of TPS on dedicated servers.

Do you have more detailed metrics?


In addition, the solution must then evolve to support a greater number of devices (15,000 to 25,000), and possibly towards NAC functions.

I will propose to evolve from a simple design to a distributed design with dedicated PSNs either to NAC or Tacacs +, by remobilizing the ISE servers from the initial target.
WHAT do you think of this approach?
Same as before, which metrics to use for servers?

Thank you in advance for your insight.

Regards

Serge

 

Everyone's tags (3)