Fully updated: The complete guide to Cisco Identity Services Engine solutions
Using Cisco Secure Access Architecture and Cisco Identity Services Engine, you can secure and gain control of access to your networks in a Bring Your Own Device (BYOD) world.
This second edition of Cisco ISE for BYOD and Secure Unified Accesscontains more than eight brand-new chapters as well as extensively updated coverage of all the previous topics in the first edition book to reflect the latest technologies, features, and best practices of the ISE solution. It begins by reviewing today’s business case for identity solutions. Next, you walk through ISE foundational topics and ISE design. Then you explore how to build an access security policy using the building blocks of ISE. Next are the in-depth and advanced ISE configuration sections, followed by the troubleshooting and monitoring chapters. Finally, we go in depth on the new TACACS+ device administration solution that is new to ISE and to this second edition.
With this book, you will gain an understanding of ISE configuration, such as identifying users, devices, and security posture; learn about Cisco Secure Access solutions; and master advanced techniques for securing access to networks, from dynamic segmentation to guest access and everything in between.
Drawing on their cutting-edge experience supporting Cisco enterprise customers, the authors offer in-depth coverage of the complete lifecycle for all relevant ISE solutions, making this book a cornerstone resource whether you’re an architect, engineer, operator, or IT manager.
Review evolving security challenges associated with borderless networks, ubiquitous mobility, and consumerized IT
Understand Cisco Secure Access, the Identity Services Engine (ISE), and the building blocks of complete solutions
Design an ISE-enabled network, plan/distribute ISE functions, and prepare for rollout
Build context-aware security policies for network access, devices, accounting, and audit
Configure device profiles, visibility, endpoint posture assessments, and guest services
Implement secure guest lifecycle management, from WebAuth to sponsored guest access
Configure ISE, network access devices, and supplicants, step by step
Apply best practices to avoid the pitfalls of BYOD secure access
Set up efficient distributed ISE deployments
Provide remote access VPNs with ASA and Cisco ISE
Simplify administration with self-service onboarding and registration
Deploy security group access with Cisco TrustSec
Prepare for high availability and disaster scenarios
Implement passive identities via ISE-PIC and EZ Connect
Implement TACACS+ using ISE
Monitor, maintain, and troubleshoot ISE and your entire Secure Access system
Administer device AAA with Cisco IOS, WLC, and Nexus