Home / Cisco Security / New Release Cisco ISE 2.4

New Release Cisco ISE 2.4

Today I am going to talk about Cisco ISE next generation version, Cisco ISE 2.4. Before we talked about Cisco ISE 2.4, first we will discuss Cisco ISE.

Cisco ISE- Identity services engine is next generation identity and Access control policy platform for the enterprise-based network. It is one of the integral parts in the enterprise network. It can apply access control policies on wired and wireless network. It will give you the real-time contextual information from the network to the admins.

What is Cisco Identity Services Engine?
A lot of questions on Cisco ISE and some of you really don't know about the Cisco ISE  Cisco ISE is one of the integral and the important part in the Cisco DNA infrastructure for the Next generation networks.

Fig 1.1- Cisco ISE 2.4
With the help of Cisco ISE  you can simplify the delivery of consistent, highly secure access control across wired and wireless multivendor networks and remote VPN connections. With far-reaching, intelligent sensor and profiling capabilities, Cisco ISE can reach deep into the network to deliver superior visibility into who and what are accessing resources.

What’s new in Cisco ISE 2.4 version?
  • LicensingCisco ISE 2.4 has now subscription-based licensing 
  • IOT: Enhanced visibility of IoT (Internet of Things) devices, with the information collected in real-time from Cisco Industrial Network Director (IND).
  • Scale: Faster MnT Performance with a new large Appliance.
  • IPv6 Support: IPv6 Support for RADIUS and Static SGT mapping.
  • Posture Enhancements: Graceful dealing of end user posture issues. Flexibility for Checks & Remediation
  • TrustSec: Smart Verification of TrustSec policy Deployment and Selective push of IP-SGT mapping to network devices
Below is the difference showing between Cisco ISE 2.3 and Cisco ISE 2.4

Fig 1.2- Cisco ISE 2.3 and Cisco ISE 2.4
Note: Cisco ISE 2.3 and earlier releases allowed only AES-CBC ciphers (due to Common Criteria Protection Profiles for Access Control Devices and Systems). Cisco ISE 2.4 allows you to use both AES-CTR and AES-CBC ciphers.

Basics Use cases of Cisco ISE 
  • Asset visibility
  • Guest and secure wireless access
  • BYOD
  • Secure wired access
  • Segmentation
  • Compliance and posture
  • Security ecosystems integrations
  • Threat containment
  • Device administration