Context Information from network & Security solutions like AMP, Cisco Stealthwatch, Cisco NGFW etc.Device Posture information like OS version, OS type, OS patches, Service Pack Level, Security Software, Application Inventory, registry keys, digital certificates etc.Location information like physical, GPS location, Switch port location.Device attributes from LDAP using Machine account lookup.User identification from LDAP, AD, RADIUS. Below are some method ISE use to collect it. Now once identity information has been established, ISE will use contextual information from network, user and devices. Some of the other method by which ISE collects information are as given below: Identity via Web-portal: Once user try to connect to network, he will be redirected to web-portal to provide information which will be further used by ISE for authentication and authorization. 802.1X uses either user identity or machine identity or can also use both to offer permit and deny for accessing network. ISE provides security by obtaining Identity & Context information from following sources:Ĩ02.1X: It is IEEE standard for Layer 2 authentication or access control on wired or wireless network. Identity & Context Awareness Sources for ISE:
0 Comments
Leave a Reply. |