cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2830
Views
0
Helpful
11
Replies

Access-list (ACL) configuration for ISE PSN

Suzukikoki
Spotlight
Spotlight

I am following the URL below for ISE Hardening, but I am having trouble finding the settings to meet the following requirements.

https://community.cisco.com/t5/security-knowledge-base/ise-security-best-practices-hardening/ta-p/3640651

<Requirement>
"Configure ACLs that require ISE PSN access to specific ports (8443, 8905, etc, versus ip or tcp any any)."

For IP, I can filter by Administration ==> Admin Access ==> Settings ==> Access ==>IP Access from the GUI, but I cannot specify even the Port number.

I tried to configure it with ACLs as described in the requirements, but the CLI did not appear to have ACL settings.

If anyone knows of a setting, either GUI or CLI, that would allow only a specific Port (a setting that meets the requirements), please let me know.