Cisco ISE Ecosystem Partner Integration Details
Available Languages
Download Options
Introduction
This document describes how to integrate Cisco Identity Service Engine (ISE) ecosystem with some partners.
How to Integrate Cisco ISE Ecosystem with some Partners?
Refer to Cisco Security Technology Alliance (CSTA) page for the official list of all security partners.
Refer to ISE Security Ecosystem Integration Guides (http://cs.co/ise-guides) for how to integrate ISE with some of the vendors here.
Always consult with the partner for the latest documentation about their products.
| Partner | API Type | Status | ISE Version (min) | Partner Version (min) |
RTC Type | RTC Action (pxGrid) | ISE Authz Policy (EPS, ANC) | pxGrid Topics/Attributes |
| 42Gears | MDM | ✅ | 2.4 | - | None | - | - | - |
| Absolute | MDM |
✅
|
1.2 | - | None | - | - | - |
| Acalvio | pxGrid v2 | ✅ | 2.4 | 4.0 | pxGrid | Automated via policy | ANC | - |
| Alef Nula - AleFIT Office Locator | Other | ✅ | 2 | - | None | - | - | - |
| Alef Nula - AleFTI MAB Keeper | Other | ✅ | 2 | - | None | - | - | - |
| ArcSight | SIEM | ✅ | 1.2 | - | EPS REST | - | - | - |
| Armis | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | pxGrid | Manual via GUI | ANC | Topic Subscribes: ANC |
| Asimily | pxGrid v2 | ✅ | 2.4 | 20.10 | pxGrid | Manual via GUI (or automatic) | ANC |
Session ERS API calls to configure ACL |
| Attivo Networks | pxGrid v1 | ✅ | 2.1 | ATV Botsink 4.0 | pxGrid | Manual via GUI | EPS | Topic Subscribes: EndpointProtectionService |
| Bayshore Networks | pxGrid v1 | ✅ | 1.3 | 6.x | Yes | - | - |
Topic Subscribes: Attributes: SGT, IP Address |
| Blackberry - BES | MDM | ✅ | 1.4 | - | None | - | - | - |
| Blackberry - Good Secure EMM | MDM | ✅ | 1.2 | - | None | - | - | - |
| BlackRidge | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | TAC Gateway 4.1.4 | None | - | - |
Topic Subscribes: Attributes: Username, IP Address |
| BluSapphire | pxGrid v2 | Testing | 2.6 | - | - | - | - |
- |
| Check Point | pxGrid v1 | ✅ | 1.3 | R77.20 | None | - | - |
Topic Subscribes: Attributes: SGT, Username, IP Address |
| Cisco AMP | TC-NAC | ✅ | 2.1 | - | TC-NAC: ISE Authz Course of Action Condition Rules (manual assignment to ANC Policies) | - | - | - |
| Cisco CTA | TC-NAC | ✅ | 2.2 | - | TC-NAC: ISE Authz Course of Action Condition Rules (manual assignment to ANC Policies) | - | - | - |
| Cisco Cyber Vision | pxGrid v2 | ✅ | 2.4+ (validated on 2.7+) | 3.1.0 | Context In (custom attributes) | |||
| Cisco Digital Network Architecture Center | pxGrid v2 | ✅ | 2.3 | - | None | - | - | - |
| Cisco Firepower | pxGrid v2 | ✅ | 2.0 | 6.0 | pxGrid | Automated via policy | EPS | Subscribes:
Attributes:
|
| Cisco Industrial Network Director | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | 1.3 | None | - | - |
Topic Publishes:
Publish assetDeviceType, assetId, assetIPAddress, assetName, assetPortName, assetConnectedLinks.assetDeviceType, assetGroup, assetId, assetIPAddress, assetMacAddress, assetName, assetProductId, assetProtocol,assetSerialNumber, assetVendor and customized attributes |
| Cisco Meraki Systems Manager | MDM | ✅ | 1.4 | - | None | - | - | - |
| Cisco Secure Workload | ERS API | ✅ | 2.7+ | None | NA | NA | Seesion Topic | |
| Cisco StealthWatch | pxGrid | ✅ | 2.4 | 7.3.1 | pxGrid v2 | Manual via GUI | ANC |
Topic Subscribes: Attributes: Username, IPAdddress, MACAdddress, SGT, Endpoint Device, TrustSec Subject Name, Trustsec Peer Name, Trustsec Peer ID |
| Cisco WSA | pxGrid v1 | ✅ | 1.3 | 9.0.0.324 | None | - | - |
Topic Subscribes: Attributes: Username, SGT-IP Mappings |
| Cisco WSA | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0; ISE-PIC & ISE ERS API) | 11.7 | None | - | - |
Topic Subscribes: Attributes: Username, SGT-IP Mappings, MS AD Groups |
| Citrix Xenmobile | MDM | ✅ | 1.2 | - | None | - | - | - |
| Claroty | pxGrid v2 | ✅ | 2.4 | - | pxGrid: pxGrid-Context-In | ISE Authorization Policy | - |
(pxGrid 2.0) Topic Publishes: EndpointAsset Attributes: AssetID, assetIP address, AssetMACaddress, assetname, assetproductID, assetprotocol, asset serial number and asset vendor information, CTD_Criticality, CTD_CVE |
| Culinda | pxGrid v2 | Testing | 2.4 | - | pxGrid | Manual | ANC |
(pxGrid 2.0) pxGrid Context-in |
| CyberMDX | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | Mdefend 8.3+ | pxGrid | Manual via GUI | ANC |
Topic Publishes: EndpointAsset, Subscribes: ANC Attributes: CMDX_Link,CMDX_Vendor,CMDX_Type,,CMDX_PHI |
| CyberX Labs | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0?) | None | - | - | - | |
| Cylera | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0?) | None | - | - | - | |
| Cynerio | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | None | - | - |
Topic Publishes: EndpointAsset Attributes: assetDeviceType, assetIpAddress,assetMacAddress, assetName, assetProductId, assetvendor |
| Digital Defense | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0?) | - | Yes | - | - | - |
| E8 Security | pxGrid v1 | Testing | 2.0 | 2.0 | pxGrid | Manual via GUI | EPS |
Topic Subscribes: Attributes: IP address, MAC address, Username |
| Elastica (Symantec) | pxGrid v1 | ✅ | 2.0 | - | pxGrid | Manual via GUI | EPS | Subscribes: EndpointProtectionService |
| Endace | pxGrid v1 | ✅ | 1.3 | Endace 2.3+ | None |
Subscribes: Attributes: Usernames, Device Profiles |
||
| Envoy Systems | ISE Guest | ✅ | 2.2 | - | None | - | - | - |
| Exabeam | pxGrid v1 | ✅ | 2.2 | - | pxGrid | Manual via GUI | ANC |
Subscribes: EndpointProtectionService |
| FortScale (RSA) | pxGrid v1 | ✅ | 2.0 | - | pxGrid | Manual via GUI | EPS | - |
| Globo | MDM | ✅ | 1.4 | - | None | - | - | - |
| Green Light | pxGrid v1 | ✅ | 2.2 | 2 | pxGrid | Manual via GUI | ANC |
Subscribes: Adaptive NetworkControl |
| HanSight SIEM | pxGrid v1 | Testing | - | - | None | - | - | - |
| HanSight UEBA | pxGrid v1 | Testing | - | - | None | - | - | - |
| Huntsman Security | pxGrid v1 | ✅ | 2.0 | 5.97.001 | pxGrid | Manual via GUI | EPS |
Subscribes: EndpointProtectionService |
| IBM - MaaS360 | MDM | ✅ | 1.2 | - | None | - | - | - |
| IBM QRadar RTC App | pxGrid v2 | ✅ | 2.4 | 7.3.1 Patch 9 + | pxGrid | Manual via GUI | ANC |
(pxGrid 2.0) Subscribes: SessionDirectory, MDM, ANC Config Status, Radius Failures Attributes: All attributes |
| Illusive Networks | pxGrid v1 | ✅ | 2.2 | pxGrid | Manual via GUI | EPS |
Topic Subscribes: EndpointProtectionService |
|
| Infoblox DNS FW | pxGrid v1, v2 | ✅ | 2.0 2.4+ |
7.3.3 8.5 (supports 2.0 and 1.0 backward compat) |
pxGrid | Manual via GUI | EPS |
Topic Subscribes: SessionDirectory, EndpointProtectionService, Publishes IPAM and DHCP Attributes: Audit Session ID, EPSStatus, NAS IP Address, MAC Address, IP Address, NAS Port ID, Account Session ID |
| Infoblox IPAM | pxGrid v1, v2 | ✅ | 2.0 2.4+ |
7.3.3 8.5 (supports 2.0 and 1.0 backward compat) |
pxGrid | - | EPS, ANC |
Topic Subscribes: SessionDirectory, EndpointProtectionService, Publishes IPAM and DHCP Attributes: Audit Session ID, EPSStatus, NAS IP Address, MAC Address, IP Address, NAS Port ID, Account Session ID |
| JAMF Casper Suite | MDM | ✅ | 1.4 | - | None | - | - | - |
| LiveAction | pxGrid v2 | ✅ | 2.1 | - | None | - | - | - |
| LogRhythm | pxGrid v1, v2 | ✅ | 2.0 | - | EPS REST | Manual via GUI | - | - |
| LogZilla | SIEM | ✅ | 2.4 | - | None | - | - | - |
| Lumeta (Firemon) | pxGrid v1 | ✅ | 2.2 | Spectre 3.2 | Yes | - | - |
Topic Subscribes: SessionDirectory, EndpointProtectionService Topic: All attributes |
| McAfee ePO via DXL | pxGrid v1 | ✅ | 2.1 | ePO 5.9 DXL Broker 4.0 |
pxGrid | Automated via policy | ANC |
Subscribes: AdaptiveNetworkControl |
| Medigate | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | pxGrid | Manual via GUI | ANC |
Publishes: EndpointAsset, Subscribes: ANC Attributes: Publish assetDeviceType, assetId, assetIPAddress, assetName, assetPortName, assetConnectedLinks.assetDeviceType, assetGroup, assetId, assetIPAddress, assetMacAddress, assetName, assetProductId, assetProtocol,assetSerialNumber, assetVendor and customized attributes |
| Microsoft inTune | MDM | ✅ | 1.4 | - | None | - | - | - |
| MobileIron | MDM | ✅ | 1.2 | - | None | - | - | - |
| Mosyle | MDM | ✅ | 2.3 | - | None | - | - | - |
| NetIQ Sentinel | pxGrid v1 | ✅ | 1.3 | 7.2 | pxGrid | - | EPS |
Subscribes: SessionDirectory, EndpointProtectionService Topic: Username, IP, MacAddress, EndpointDevice Information |
| Nozomi | pxGrid v2 | ✅ | 2.4 | 19.0.5 | pxGrid | Automatic | ANC |
SessionDirectory - |
| Noovus Apollo | Other | ✅ | 2.3 | - | None | - | - | - |
| Nyansa Voyance | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | Yes | - | - | - |
| Ordr | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | pxGrid | Manual via GUI | ANC |
Publishes: EndpointAsset Topic: Publish assetDeviceType, assetId, assetIPAddress, assetName, assetPortName, assetConnectedLinks.assetDeviceType, assetGroup, assetId, assetIPAddress, assetMacAddress, assetName, assetProductId, assetProtocol,assetSerialNumber, assetVendor and customized attributes |
| Panaseer | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | None | - | - | - |
| Ping Identity (via IoT connector) | pxGrid v1 | ✅ | 1.3 | - | None | - | - | - |
| Qualys | TC-NAC | ✅ | 2.1 | - | TC-NAC: ISE Authz CVSS Score | Manual Assignment to ANC Policies | - | - |
| Rapid7 - InsightIDR | pxGrid | Testing | - | - | None | - | - | - |
| Rapid7 - InsightVM | pxGrid | Testing | - | - | None | - | - | - |
| Rapid7 Nexpose | pxGrid v1 | ✅ | 1.4 | - | pxGrid | Automated via policy | EPS |
Subscribes: EndpointProtectionService |
| Rapid7 Nexpose | TC-NAC | ✅ | 2.2 | Nexpose 6.0 + Insight VM |
TC-NAC: ISE Authz CVSS Score | Manual Assignment to ANC Policies | - | - |
| RedShift Networks | pxGrid v2 | ✅ | 2.4 | RedShift CMS | pxGrid ANC | Automated via policy | - | - |
| RSA NetWitness | SIEM | ✅ | 2.4 | - | - | - | - | - |
| SAINT | pxGrid v1 | ✅ | 1.4 | 8.1.0 | EPS | Automated vu policy | - |
Subscribes: EndpointProtectionService |
| SAP Afaria | MDM | ✅ | 1.2 | - | None | - | - | - |
| SecureAuth | pxGrid v1 | ✅ | 1.3 | 8.2 | None | - | - |
Subscribes: SessionDirectory Topic: Audit Session ID, Session State, EPSStatus, Calling Station, Security Group, Endpoint Profile, UserName, Posture Status, AD User DNS Domain, AD Host DNS Domain, AD User NetBIOS name, AD Host NetBIOS name |
| Securonix | pxGrid v2 | ✅ | 2.4 | - | None | - | - | - |
| Siemplify | pxGrid v2 | Testing | - | - | None | - | - | - |
| Skyhigh Networks (McAfee) | pxGrid v1 | ✅ | 2.0 | None | - | - | - | |
| Smokescreen | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | Yes | - | - | - |
| Sophos | MDM | ✅ | 1.4 | - | None | - | - | - |
| SOTI MobiControl | MDM | ✅ | 2.0 | - | None | - | - | - |
| Splunk Addon for ISE (Splunk Enterprise) | SIEM, Syslog | ✅ | 2.4+ | 4.0.0 (splunk Enterprise 7+) | None | - | - | - |
| Splunk Phantom | SOAR | ✅ | 2.4+ | 3.0.190 | NA | Manual Via GUI | ERS API | |
| Symantec | MDM | ✅ | 1.2 | - | None | - | - | - |
| Syncurity | pxGrid v2 | ✅ | 2.4 | - | Yes | - | - | - |
| Tangoe | MDM | ✅ | 1.4 | - | None | - | - | - |
| Tanium | pxGrid v1 | ✅ | 2.4 | See Tanium Docs | pxGrid | Manual via GUI | ANC |
Subscribes: AdaptiveNetworkControl |
| Tenable Nessus (no longer available from Tenable) | EPS REST |
✖
|
1.3 | 6.1.x | EPS REST | - | - | - |
| Tenable Security Center | TC-NAC | ✔ | 2.2 | 5.5+ | TC-NAC: ISE Authz Course of Action Condition Rules | Manual Assignment to ANC Policies | - | - |
| ThreatConnect | SOAR | ✅✅ | 2.7 | 6.0 | SOAR actions | Manual | ERS API | - see blog post
ThreatConnect and Cisco ISE: Streamline Security Policy Updates |
| TIBCO (LogLogic) | SIEM | ✅ | 1.2 | - | None | - | - | - |
| TrapX Security | pxGrid v1 | ✅ | 2.0 | 6 | EPS REST pxGrid |
Manual via GUI | EPS |
Subscribes: EndpointProtectionService |
| Vmware AirWatch | MDM | ✅ | 1.2 | - | None | - | - | - |
| VU Security | pxGrid v2 | ✅ | 2.4 | - | Yes | - | - | - |
| ZingBox | pxGrid v2 | ✅ | 2.4 (pxGrid 2.0) | - | EPS REST pxGrid |
Manual via GUI | ANC |
Topic Publishes: EndpointAssets, Subscribes: ANC Attributes: Publish assetDeviceType, assetId, assetIPAddress, assetName, assetPortName, assetConnectedLinks.assetDeviceType, assetGroup, assetId, assetIPAddress, assetMacAddress, assetName, assetProductId, assetProtocol,assetSerialNumber, assetVendor and customized attributes |
Contributed by
- Jason KunstCisco Engineering
FeedbackContact Cisco
- Open a Support Case
- (Requires a Cisco Service Contract)