Scribd
Upload
50 views3 pages

Cisco ISE Identity and Node Overview

Uploaded by

shahrukh khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
50 views3 pages

Cisco ISE Identity and Node Overview

Uploaded by

shahrukh khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

Identity:

o In Cisco ISE Identity is the fact of being whom or what a user or device is.
o Many factors make up identity, including employee’s username & password.
o In Cisco ISE the Identity is used to access corporate network resources.
o Identity can be a username with password or Endpoints with details.

Identity Stores:
o Identity store is a database that authenticate a user’s or an endpoint’s credentials.
o Identity Store is a store or database that is used to authenticate users or endpoints.
o Identity store could be an internal database that resides on the AAA server.
o Identity store could be an additional external database to connect.
o Identity Stores can also be used for attributes required for authorizing policies.
o Each individual identity store is also referred to as an identity source.
o Both the Cisco ISE & Cisco Secure ACS are capable of using identity sources.
o Both support internal identity databases as well as external identity databases.
o External Identity stores are the external databases, which are used for authentication.
o External identity sources include AD, LDAP, OTP servers, smart cards, and CAs.
o Cisco ISE has internal user database for internal username and password accounts.
o External identity store supported Cisco ISE is integration Microsoft Active Directory.

1 | P a g e Prepared By Ahmad Ali, Email: ahmadalimsc@[Link] , Mobile# 0564303717


Local:
o Cisco ISE has internal user database used for internal username & password accounts.
o These user accounts stored in the internal user database are referred to as internal users.
o Internal user database can be used as an internal identity store for local authentication.
o Internal user database can be used for internal identity store for local authorization policies.
o Users in the internal user database are called internal users.

2 | P a g e Prepared By Ahmad Ali, Email: ahmadalimsc@[Link] , Mobile# 0564303717


Node:
A node is a server, either physical or virtual. A node is an individual instance that runs the Cisco
ISE software. Cisco ISE is available as an appliance and also as a software that can be run on
VMware. Each instance, appliance or VMware that runs the Cisco ISE software is called a node.

Persona:
A Persona is the role the server is filling. The persona or personas of a node determine the
services provided by a node. A Cisco ISE node can assume any of the following personas:
Administration, Policy Service, Monitoring.

Service:
A Service is a feature within a persona. Service is a specific feature that a persona provides such
as network access, profiler, posture, security group access, monitoring and troubleshooting,
and so on.

3 | P a g e Prepared By Ahmad Ali, Email: ahmadalimsc@[Link] , Mobile# 0564303717

You might also like