Cisco ISE deployment configuration topics -ISE

Others 2019-10-10 10:43:25 views: null

ISE deployed in three ways:

1.Standalong Deployment

The so-called Standalong deployment is only one ISE , all components are installed on the table top. An ISE good when installed by default is "Standalong" mode.

 

 

2.Redundant Deployment

Redundant mode is the two ISE , a main one, one is Primary , is a Secondary , both ISE are installed ISE all components. Wherein when one fails, the other switch. However, there needs to be emphasized that the primary and standby of management, namely standby PAN and MnT only Primary of PAN can be configured and managed, and the two are working PSN. In the Authenticator (WLC on such a general configuration can be two or Switch Radius Server, you may be configured Priamry ISE part to the first part of the first configuration Secondary ISE to achieve load balancing PSN).

 

 

3.Basic Distribution Deployment

The so-called distributed deployment is to ISE components stripped out. A Primary of PAN + MnT, a Secondary of PAN + Mnt , others are PSN , this model can be up to 5 sets of PSN .

 

 

4. Distributed Persona Deployment

The roles may be PAN and MnT are also separated respectively a main one. Under this model, we can achieve 40 sets of PSN , 250K concurrent number of online users.

 

 

Configuration:

An ISE after the installation is complete default Standalong mode, if you want it configured as Primary , you need to install it into " Primary "; and Sencondary the ISE no conversion is needed. With ACS is not the same, ACS is an ACS registered to Primary become Sencondary role on; ISE is ready to become Sencondary on the ISE Primary pull over into Sencondary.

Note that, ISE connection is through TLS encryption, and therefore need to trust each other, which means that the need for certificates. You can install a self-signed certificate from each other, in the enterprise can also apply the same CA certificates issued, of course, also possible to use public certificates.

Note: ISE 's License is calculated according to the number of users online, only Primary of PAN will calculate the License , this is the ACS is not the same .

 

Turn: iqianyue, Shu Copyright if not stated, are original, please indicate iqianyue

 

Guess you like

Origin www.cnblogs.com/MomentsLee/p/11645880.html
Recommended
Ranking
ElasticSearch-- data modeling best practices
Permission Maintenance - Shadow User Backdoor
Refactor the code using MVP mode
Quantitative investment-fundamental model-PVC multi-factor model
Spark Big Data Processing Lecture Notes 3.2 Mastering RDD Operators
Blazor page components (2)
Erlernen von Kenntnissen zur Android-Entwicklung – Kodierung, Verschlüsselung, Hash, Serialisierung und Zeichensätze
About Qi high in JAVA study notes SORM summary detailed personal explanation
Will you calculate the accuracy of the rope displacement sensor in the measurement?
OPENJTAG debugging learning (3): debugging using the gdb command line
Daily
More
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)

Code World

© 2018 codetd.com