Security and VPN

Cisco Identity Services Engine


Govern Your Network with Central Policy Enforcement

Whether you need to support employee "bring-your-own-device" (BYOD) to work practices, or provide more secure access to your data center resources, the Cisco Identity Services Engine (ISE) meets your needs. It helps you reliably enforce compliance, enhance infrastructure security, and streamline service operations. Cisco ISE is a context-aware, identity-based platform that gathers real-time information from the network, users, and devices. ISE then uses this information to make proactive governance decisions by enforcing policy across the network infrastructure. The Cisco Identity Service Engine is a core component of the Cisco TrustSec solution and Cisco´s SecureX architecture.

Cisco Identity Services Engine offers the following benefits.

  • Security: Improve visibility and control over all user activity and devices on your physical network and virtual infrastructure
  • Compliance: Create consistent policy across the infrastructure for corporate governance.
  • Efficiency: Increase IT staff productivity by automating labor-intensive tasks and simplifying service delivery.

Restore Network Visibility, Control

Learn the fundamentals of Cisco ISE on TechwiseTV. (5:18 min)


Manage "Bring Your Own Device" Trend

Help ensure secure access as employees bring their own devices to work. (1:45 min)


Product Highlights

  • Consistent enforcement of context-based policies across wired and wireless networks
  • System-wide visibility showing you who and what is on the network - wired, wireless, or VPN
  • Integrated AAA, profiling, posture, and guest services to simplify deployments and cut costs
  • Accurate device identification using ISE-based probes, embedded device sensors, active endpoint scanning
  • Policy-based mobile-device compliance and application provisioning using integrated multi-device management solutions
  • Simplified BYOD onboarding through self-service registration*

*Available later this year

ISE Deployment

You can deploy Cisco ISE as an appliance or virtual machine to enforce security policy on all devices that attempt to gain access to network infrastructure. Integrated with the Cisco Prime Network Control System (NCS), Cisco ISE helps you manage all devices more securely. In wireless deployments, it can help address the challenges of a bring-your-own-device (BYOD) environment.

ISE Deployment Diagram
Click to enlarge

Featured Content

The Power of Cisco ISE

San Antonio Water System improves policy enforcement and network health. (3:21 min)


Gartner 2012 NAC Magic Quadrant
See why Cisco has been positioned as a leader in Gartner´s Network Access Control Magic Quadrant.

Connectivity Made Easy (PDF - 401 KB)
Connect any device to any network more easily, reliably, and securely.

Healthcare Provider Improves Data Security with Access Control
Sentara Healthcare relies on Cisco ISE for identity and access policy strategy.

Cisco Increases Patient Data Security for Healthcare Provider (PDF - 211 KB)
Cisco engineers help Sentara deploy new Identity Services Engine to enforce security policies for patient records.

Models and Documents

The Power of Cisco ISE

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

Restore Network Visibility, Control

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

Manage "Bring Your Own Device" Trend

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player