The Release of New Cisco ISE Version 2.7
As Cisco comes up with the new release of Cisco ISE with version 2.7, there are lot of enhancements which improves the performance of Cisco ISE with the release of version 2.7.
What is Cisco ISE?
Cisco ISE also known as Cisco Identity Services Engine (ISE) is a security policy management platform that offers protected access to network devices. Cisco ISE permits organizations to collect real-time contextual data from networks, users, and devices. This information can be used to make proactive governance decisions by generating access control policies for the various network elements, including access switches, Cisco Wireless Controllers, Virtual Private Network (VPN) gateways, and data center switches.
Cisco ISE also known as Cisco Identity Services Engine (ISE) is a security policy management platform that offers protected access to network devices. Cisco ISE permits organizations to collect real-time contextual data from networks, users, and devices. This information can be used to make proactive governance decisions by generating access control policies for the various network elements, including access switches, Cisco Wireless Controllers, Virtual Private Network (VPN) gateways, and data center switches.
Virtual Platforms supported for Cisco
ISE 2.7
KVM on RHEL 7.1. 7.3 & 7.4
ESXi 5.x and 6.x
Microsoft Hyper-V with windows server 2012 and above
KVM on RHEL 7.1. 7.3 & 7.4
ESXi 5.x and 6.x
Microsoft Hyper-V with windows server 2012 and above
What is new in Cisco ISE 2.7?
There are below enhancements done in Cisco ISE 2.7 version
we will now enable automatic logon for a self-registered guest after sponsor approval. As a business outcome, the guest user is automatically logged in when the sponsor approves the guest access request. This simplifies the process and improves customer experience.
There are below enhancements done in Cisco ISE 2.7 version
we will now enable automatic logon for a self-registered guest after sponsor approval. As a business outcome, the guest user is automatically logged in when the sponsor approves the guest access request. This simplifies the process and improves customer experience.
Cisco ISE 2.7
supports the Tunnel Extensible Authentication Protocol (TEAP). The
type-length-value (TLV) objects are used within the tunnel to transport
authentication-related data between the EAP peer and the EAP server. You can
use EAP-MS-CHAPv2or EAP-TLS as the inner method.
 |
| Fig 1.1- Cisco ISE |
EAP chaining is
supported for TEAP. EAP chaining allows Cisco ISE to run both the inner methods
for user and machine authentication inside the same TEAP tunnel. This enables
Cisco ISE to correlate the authentication results and apply the appropriate
authorization policy, using the EAP Chaining Result attribute.
You can now
enable the Reset Password option in the Guest portal for self-registered
guests. Self-registered guests with valid guest account can use this option
when they forget their password. When you click this option, the
self-registration page is launched. You can enter your phone number or email
address (whichever you are registered with) and enter a new password.
For more info,
Please check the Cisco ISE 2.7 Release notes below
https://www.cisco.com
https://www.cisco.com
How to upgrade
the Cisco ISE to the new version of Cisco ISE 2.7?
If you have Cisco ISE with version 2.2, 2.3, 2.4 and 2.6 you can directly upgrade the Cisco ISE to 2.7 version. If you have the earlier version than 2.2 of Cisco ISE in your environment you first need to upgrade the Cisco ISE to 2.2 and then to 2.7.
If you have Cisco ISE with version 2.2, 2.3, 2.4 and 2.6 you can directly upgrade the Cisco ISE to 2.7 version. If you have the earlier version than 2.2 of Cisco ISE in your environment you first need to upgrade the Cisco ISE to 2.2 and then to 2.7.
Check out the below path for upgradation
procedure
Cisco ISE 2.2 --Ã Cisco ISE 2.7
Cisco ISE 2.3 --Ã Cisco ISE 2.7
Cisco ISE 2.4 --Ã Cisco ISE 2.7
Cisco ISE 2.6 --Ã Cisco ISE 2.7
Cisco ISE 2.1 --Ã Cisco ISE 2.4 -Ã Cisco ISE 2.7
Cisco ISE 1.4 -Ã Cisco ISE 2.2 Ã Cisco ISE 2.7
Cisco ISE 2.2 --Ã Cisco ISE 2.7
Cisco ISE 2.3 --Ã Cisco ISE 2.7
Cisco ISE 2.4 --Ã Cisco ISE 2.7
Cisco ISE 2.6 --Ã Cisco ISE 2.7
Cisco ISE 2.1 --Ã Cisco ISE 2.4 -Ã Cisco ISE 2.7
Cisco ISE 1.4 -Ã Cisco ISE 2.2 Ã Cisco ISE 2.7
Hope it clears
now about the new features in Cisco ISE with the upgrade path from the older
version to Cisco ISE 2.7 as well. We will come up with the new things more in
context to Cisco ISE in near future. Be in touch and stay connected with www.routexp.com
