Re: Cisco ISE

[Darin Herteen <synack () live com>]

Any particular part of the product giving you trouble or just the migration to the product itself ?


Running 5.7 here a multi-vendor endpoint environment using both TACACS+ & RADIUS for device administration and have 
been curious about the pain I may or may not have ahead of me...

________________________________
From: NANOG <nanog-bounces () nanog org> on behalf of Christopher J. Wolff <cjwolff () nola gov>
Sent: Friday, October 6, 2017 3:53 PM
To: Mann, Jason
Cc: nanog () nanog org
Subject: Re: Cisco ISE

Proceed with extreme caution.  You may want to have that end of life ACS deployment bake for another six months.  You 
will want to have the highest level of Cisco engineering engaged should you choose to go this direction.

On Oct 6, 2017, at 3:48 PM, Mann, Jason <jamann () mt gov<mailto:jamann () mt gov>> wrote:

As would I. We are going to start a project that is replacing ACS 5.7 with ISE 2.X

-----Original Message-----
From: NANOG [mailto:nanog-bounces () nanog org] On Behalf Of Christopher J. Wolff
Sent: Friday, October 6, 2017 2:41 PM
To: nanog () nanog org<mailto:nanog () nanog org>
Subject: Cisco ISE

Is anyone successfully deploying ISE 2.X?  I’m six months into it on about 10,000 endpoints and it seems like it’s a 
highly challenged product.  I’d love to hear your experiences on or off-list.  Thanks in advance.