This release of DNA Center provides a mechanism to create a trusted communications link with Cisco Identity Services Engine (ISE) and permits DNA Center to share data with ISE in a secure manner. Once ISE is registered with DNA Center, any device DNA Center discovers, along with relevant configuration and other data, is pushed to ISE. Users can use DNA Center to discover devices and then apply both DNA Center and ISE functions to them, as these devices will be exposed in both applications. DNA Center and ISE devices are all uniquely identified by their device names.
DNA Center devices, as soon as they are provisioned and belong to a particular site in the DNA Center site hierarchy, are pushed to ISE. Any updates to a DNA Center device (such as changes to IP address, SNMP or CLI credentials, ISE shared secret, and so on) will flow to the corresponding device instance on ISE automatically. When a DNA Center device is deleted, it is removed from ISE as well. Please note that DNA Center devices are pushed to ISE only when these devices are associated to a particular site where ISE is configured as its AAA server.
Finally, when properly configured, you can use Cisco ISE as a AAA server, to authorize and authenticate DNA Center users. You can also use a server other than Cisco ISE to perform this function; for details on this option, see the topic "Configure Authentication and Policy Servers" in the Cisco Digital Network Architecture Center Administrator Guide .
Follow the steps below to integrate ISE with DNA Center.