Re: AnyConnect VPN & Cisco ISE

Terence Lockette · ‎10-17-2017

Hello,

I'm not sure if this is the right forum to ask this question but I wanted ask a question regarding AnyConnect VPN and Cisco ISE. Is it preferred to have AnyConnect VPN configured before, during, or after the Cisco ISE deployment?

I'm curious because I want to integrate ISE with remote access VPN but I'm not sure which approach would be best. Thanks in advance.

Terence

Flavio Miranda · ‎10-17-2017

Hello @Terence Lockette

Dont think that sequence is important here. To get this working you need both anyway.

Are you talking about Anyconnect on cisco ASA and ISE being used to integrate with Active Directory or you mean Anyconnect and ISE directly ?

-If I helped you somehow, please, rate it as useful.-

Terence Lockette · ‎10-17-2017

Hello @Flavio Miranda

Thanks for your quick response. I'm referring to AnyConnect on the ASA and integrating it with ISE for authentication, posture assessment, etc. I wasn't sure if order was key in getting this set up or if it even mattered at all. I just want to make sure I'm taking the correct approach.

Thanks.

Flavio Miranda · ‎10-17-2017

Yeah, either way you need both up and running. That´s depends pretty much on administrative activities like buy this or buy that first. If you have ISE available to install, go for it. If, otherwise, ISE will take longer but you already have Anyconnect licenses available, it is ok install that.

You have the option to use a local database while ISE is not ready.

-If I helped you somehow, please, rate it as useful.-