Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about how to deploy and configure Cisco Identity Services Engine (ISE) Version 1.2 and to understand the features and enhanced troubleshooting options available in this version, with Cisco expert Craig Hyps.
October 27, 2014 through November 7, 2014.
The Cisco Identity Services Engine (ISE) helps IT professionals meet enterprise mobility challenges and secure the evolving network across the entire attack continuum. Cisco ISE is a security policy management platform that identifies users and devices using RADIUS, 802.1X, MAB, and Web Authentication methods and automates secure access controls such as ACLs, VLAN assignment, and Security Group Tags (SGTs) to enforce role-based access to networks and network resources. Cisco ISE delivers superior user and device visibility through profiling, posture and mobile device management (MDM) compliance validation, and it shares vital contextual data with integrated ecosystem partner solutions using Cisco Platform Exchange Grid (pxGrid) technology to accelerate the identification, mitigation, and remediation of threats.
Craig Hyps is a senior Technical Marketing Engineer for Cisco's Security Business Group with over 25 years networking and security experience. Craig is defining Cisco's next generation Identity Services Engine, ISE, and concurrently serves as the Product Owner for ISE Performance and Scale focused on the requirements of the largest ISE deployments.
Previously Craig has held senior positions as a customer Consulting Engineer, Systems Engineer and product trainer. He joined Cisco in 1997 and has extensive experience with Cisco's security portfolio. Craig holds a Bachelor's degree from Dartmouth College and certifications that include CISSP, CCSP, and CCSI.
Remember to use the rating system to let Craig know if you have received an adequate response.
Because of the volume expected during this event, Ali might not be able to answer each question. Remember that you can continue the conversation on the Security community, sub-community shortly after the event. This event lasts through November 7, 2014. Visit this forum often to view responses to your questions and the questions of other community members.
Hello, We upgraded our 5505 to a 5506 with FirePower to take advantage of the increased bandwidth and the FirePower Services for security. Previously we had extensive object groups for access and denial and we wanted to transition...
I'm wondering if I can build a policy for authentication that will perform dot1x first, give it five seconds or so as a window to successfuly pass 802.1x auth, and then if dot1x does not succeed in that time, start a MAB authentication transaction.
Good Morning, We recently changed our internal DNS Servers and were looking to change them on the firewall. When we did, the firewall was no longer able to resolve addresses. We failed back but noticed that in the ADSM that the outside in...
Hello, I do have a Cisco TAC case open, but they've had it for a few weeks now still working with no luck. Maybe someone here can help. I have a new Cisco FTD 1010 running mgmt through FDM. I want to take the 1010 and deploy to a home user with DHCP ...
Hi, switch model is WS-C3650-24PS-SI got the error messages (MAB not supported, dot1x not supported in this interface) when i tried "source template dot1x"sh versionCisco IOS Software [Denali], Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), V...