Cisco Meraki’s Enterprise Mobility Management (EMM) software secures, monitors, manages and supports mobile devices deployed across mobile operators, service providers and enterprises. A typical Cisco Meraki EMM configuration consists of a cloud-based policy server and a mobile device client. However, often times the network is the only entity that can provide granular access to endpoints (based on ACLs, TrustSec SGTs etc.). It is envisaged that Cisco Identity Services Engine (ISE) would be an additional network based enforcement point while the cloud- based Cisco Meraki EMM policy server would serve as the policy decision point. ISE expects specific data from Cisco Meraki cloud EMM servers to provide a complete solution.
The following are the high level use cases in this solution.
Device registration - Non registered endpoints accessing the network on-premises will be redirected to registration page on Cisco Meraki EMM cloud for registration based on user role, device type, etc. In addition Meraki can also provision the device with corporate application e.g. AnyConnect (VPN), Jabber (Collaboration) etc .. so the user has secure access to corporate resources (per policy) when device is off-premises.
Remediation - Non compliant endpoints will be given restricted access based on compliance state Periodic compliance check– Periodically check with Cisco Meraki EMM cloud server for compliance
Ability for ISE administrators to issue remote actions on the device through the Cisco Meraki EMM cloud (e.g.: remote wiping of the managed device)
Ability for end users to leverage the ISE My Devices Portal to manage personal devices, e.g. Full Wipe, Corporate Wipe and PIN Lock.
Hi, i have a VM ISE 2.6 with a Guest Portal integrated with a LDAP Server. On Guest portal, when an user has the password expired, appears the message "Authentication failed". I would like to appear in guest portal page the message "AD/LDAP use...
Hi How do I configure Cisco ASA S2S VPN tunnel such that unless I initiate the traffic, the tunnel should not be established, I do not want the opposite end to ever initiate VPN tunnel. Does "connection-type originate-only help"? Than...
Hi, Need advised on step to upgrade FMCv using Vmware EXSi. Current version as below : VMware version : 5.50FMCv : 6.0.1ASA 5545-X Firepower module : 6.0.1Plan based on Upgrade path : Proposed firmware upgrade for FMC : 126.96.36.199 > 6....
GreetingsDoes anyone have any insights into why version 6.6.1 suddenly is the recommended version of the Firepower brand? Cisco is usually very cautious on moving the recommended flag and this time they jumped the entire 6.5 track. RegardsFredrik
Hello,When I try to apply an ACL to a Layer2 port, I am having this message. Does anyone know how to do it on nxos? SPOR-MPLS(config-if)# show run interface ethernet 1/7interface Ethernet1/7switchport mode trunkswitchport trunk allowed vlan 818SPOR-M...