Does this include posture assessment setup?

Yes, it includes detailed workflows for defining posture conditions, requirements, and remediation policies for Windows endpoints using the AnyConnect ISE Posture Module.

What versions of Cisco ISE does this skill support?

This skill is designed for Cisco ISE 3.1 and newer, focusing on modern web-based administration and current security features.

Can this skill help with non-Cisco network devices?

While the ISE policy logic is standard RADIUS, the specific switchport and AAA configurations provided are optimized for Cisco IOS/IOS-XE environments.

How does this handle devices that do not support 802.1X?

The skill provides specific configurations for MAC Authentication Bypass (MAB) to allow and control access for devices like printers, IP phones, and IoT hardware.

Network Access Control with Cisco ISE

Name: Network Access Control with Cisco ISE
Author: mukul975

bymukul975

•

4,121

•

보안 및 테스팅

Deploy and manage Cisco Identity Services Engine for enterprise-grade 802.1X authentication, posture assessment, and dynamic network segmentation.

This skill provides a comprehensive framework for implementing Cisco ISE to secure wired and wireless networks. It covers end-to-end workflows including Active Directory integration, 802.1X authentication (EAP-TLS/PEAP), and MAC Authentication Bypass (MAB). By utilizing this skill, security engineers can automate the deployment of dynamic authorization policies, including VLAN assignments, Downloadable ACLs (dACLs), and TrustSec Security Group Tags (SGTs), while ensuring endpoint compliance through rigorous posture assessment and remediation.

주요 기능

01Active Directory integration and identity source sequencing

02Dynamic VLAN assignment and TrustSec (SGT) segmentation

03Security posture assessment and automated remediation workflows

044,121 GitHub stars

05Step-by-step RADIUS and CoA (Change of Authorization) setup

06Comprehensive 802.1X and MAB configuration for Cisco Catalyst switches

사용 사례

01Ensuring endpoint compliance through posture checks and automated remediation

02Automating guest access and BYOD onboarding processes

03Deploying a Zero Trust network access model in enterprise environments

주요 기능

01Active Directory integration and identity source sequencing

02Dynamic VLAN assignment and TrustSec (SGT) segmentation

03Security posture assessment and automated remediation workflows

044,121 GitHub stars

05Step-by-step RADIUS and CoA (Change of Authorization) setup

06Comprehensive 802.1X and MAB configuration for Cisco Catalyst switches

사용 사례

01Ensuring endpoint compliance through posture checks and automated remediation

02Automating guest access and BYOD onboarding processes

03Deploying a Zero Trust network access model in enterprise environments