Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1569
Views
10
Helpful
8
Replies

Understanding ISE Training

Hawk
Level 1
Level 1

‎05-09-2018 01:34 PM - edited ‎02-21-2020 10:55 AM

Before I ask questions I would like to give some background on why I am asking. My company is currently using Cisco ACS to access our network equipment via tacacs+ and radius. We use Cisco for pretty much everything but we do have quite a few HP switches we manage which use radius for authentication not tacacs+. We also use ACS for our Anyconnect remote users. ACS communicates with our Symantic VIP Gateway so our Anyconnect users can use a code with a pin (Symantic VIP) to gain access into our environment & work remotely. Here's my problem I'm running into. Cisco ACS is end of life now & my company has decided to upgrade to ISE which we already have installed on a VM & are running tests now. Our goal to upgrade to ISE is very simple because we simply plan to use ISE for only the same purposes we are using Cisco ACS for today. which I mentioned above. Obviously ISE is capable of much more than authentication & I'm having a hard time knowing what training to seek online, specifically to configure the things I mentioned above. We don't plan on doing anything fancy with ISE for a while but will need to know & understand how to configure the items I mentioned above. Can anyone guide me & advise what specific training to look for online to gain the understanding I specifically want to gain? Some links & videos would be much appreciated.

Labels:
0 Helpful
8 Replies 8

Rob Ingram
VIP
VIP

‎05-09-2018 01:55 PM

Hi Hawk,

The Cisco ISE course would be called SISE, details here

There are some online videos here and here

 

HTH

ajc
Level 7
Level 7

‎05-09-2018 02:00 PM

My 2 cents,

 

-Do not use 3495 appliances/vm's. I have seen issues when running multiple personas on the same node.

-Version 2.3 is more stable than 2.2

-Check the requirements on ISE when you are running Radius + Tacacs on the same node.

 

Arne Bier
VIP
VIP
In response to ajc

‎05-09-2018 04:26 PM

Regarding version 2.3 being more stable than 2.2 - how does one substantiate that?  Cisco seems to claim that ISE 2.2 is the safe harbour version and by the sheer number of patches released it would stand to reason that 2.2 is more mature than 2.3 (patch 3 only).  In my opinion the answer is always "it depends".  It depends what you're using ISE for.  I mostly use it for Guest portals and TACACS, and 802.1X - in that instance I am happier with 2.3 because there are feature improvements for Guest that I need.  But Cisco have also changed some underlying plumbing in ISE that seems to make it feel a bit shaky and instable at times.  I love this product ... when it works.  When it works and doesn't give issues on the GUI (which can be flakey as hell) then it's a joy to behold. 

We still maintain our ACS 5.4 and that is one rock solid product.  I don't get the same vibe from ISE.  ISE is a house of cards built on flaky Java held together with spit and a bit of polish.  The marketing hype around ISE is astonishing - ISE will save the universe.  Just don't look too closely.  And heaven forbid we should ever get access to the underlying OS - I think Cisco don't want us to get to the Linux CLI to see the mess they have created there.

0 Helpful

#Mat
Level 6
Level 6

‎05-09-2018 05:33 PM

Hi Hawk, here are a lot of information: https://communities.cisco.com/community/technology/security/pa/ise

 

Regards.-

.
0 Helpful

ArloS
Level 1
Level 1

‎07-20-2022 07:27 AM

What I'm seeing is the Cisco certification training is on version 2.4?  While ISE currently recommended version is 3.1
https://learningnetworkstore.cisco.com/on-demand-e-learning/implementing-and-configuring-cisco-identity-services-engine-sise-v3.0/ELT-SISE-V3-022205.html

Is the training relevant enough to support the new versions of ISE?
The closest I can find is still only version 2.7 regarding a somewhat reputable learning source.
It's fine that the exam may be on older versions for this to work but I need to support current version. Install and admin.

Old thread but questions apparently never get old.

0 Helpful

ArloS
Level 1
Level 1
In response to ahollifield

‎07-20-2022 07:59 AM

Youtube snipits for various topics?
I take it the answer is the training is not sufficient.

0 Helpful

ahollifield
VIP
VIP
In response to ArloS

‎07-20-2022 08:08 AM - edited ‎07-20-2022 08:09 AM

I haven't taken the training.  However, based on the versions you call out its probably good to pass the exams but may not be enough for a from scratch deployment of 3.1 for example. 

Also, that YouTube link is NOT snippets.  Focus on the 1 hour long videos which are recording of webinars from the ISE TMEs on various ISE topics.

0 Helpful
Customers Also Viewed These Support Documents