Make Network Security Simple
See how Cisco TrustSec takes the complexity out of network security. (3:23 min)

Cisco TrustSec technology uses software-defined segmentation to simplify the provisioning of network access, accelerate security operations, and consistently enforce policy anywhere in the network. Cisco TrustSec is embedded technology in Cisco switches, routers, and wireless and security devices.
Cisco TrustSec Software-Defined Segmentation
Cisco TrustSec uses software-defined segmentation to reduce the risk of malware propagation, simplify security operations, and assist in meeting compliance goals. Traffic classification is based on endpoint identity, not IP address. It is also not based on access control lists (ACLs), helping to enable policy change without network redesign.
Taking Complexity Out of Network Security
Cisco TrustSec is embedded technology in your existing Cisco infrastructure. This can simplify provisioning and management of network access, make security operations more efficient, and help to enforce segmentation policy consistently, anywhere in the network.
Cisco Identity Services Engine, Cisco’s market-leading policy management platform, gathers advanced contextual data about who and what is accessing your network. It then defines role-based access using Security Group Tags to segment your network.
This centralized software-defined segmentation policy is pushed by Identity Services Engine to your TrustSec-enabled network devices in order to enforce policy decisions across the network.
Simplify Access Management
- Create and manage policies in a simple matrix using plain language
- Easily manage access control and segmentation across the enterprise while maintaining compliance
- Control access to critical assets by business role, device type, and location
Consistent Policy Across the Network
- Consistently enforce policies across the network and scale from mobile users to the data center
- Identity Services Engine central policy manager defines segmentation policies, which are enforced across wired, wireless, and VPN topologies
Reduce Operational Expenses
- Limit the impact of data breaches and prevent the lateral movement of threats and compromised devices across your network with micro-segmentation
- Reduce the need for costly network re-architecture by automating firewall rules and ACL administration
- Easily comply with audits for PCI and other compliance requirements using network segmentation
Cisco TrustSec technology is available in products used in the branch office, campus, and data center. It is embedded in Cisco switching, routing, firewall, and wireless devices. Supporting platforms include:
- Cisco Identity Services Engine
- Cisco Catalyst and Cisco Nexus switches
- Cisco Integrated Services Routers
- Cisco wireless LAN products
- Cisco ASA firewalls and VPN appliances
See the Cisco TrustSec product matrix for a complete list of products and capabilities.
Additional Resources

Case Studies (4)


Global Bank Builds Foundation for Highly Secure BYOD

Proteccion contra de seguridad, racionlizacion de la prestacion de servicios ( PDF - 345 KB )

Providing Next-Generation Security for Today's Healthcare



How-to Guide for Campus and Branch Segmentation ( PDF - 2 MB )

Quick Start Configuration Guide ( PDF - 5 MB )

Securing BYOD with Cisco TrustSec Security Group Firewalling

TrustSec Capabilities on Wireless 8.4 Configuration Guide ( PDF - 10 MB )

TrustSec with Easy Connect Configuration Guide ( PDF - 3 MB )

TrustSec with Meraki MS320 Switch Configuration Guide ( PDF - 1 MB )

TrustSec – ACI Policy Plane Integration ( PDF - 4 MB )

User-to-Data-Center Access Control Using TrustSec Deployment Guide April 2016 ( PDF - 3 MB )

User-to-Data-Center Access Control Using TrustSec Design Guide October 2015 ( PDF - 1 MB )

Wireless Campus design guide for Security Group Tags over VXLAN ( PDF - 1 MB )

Wireless FlexConnect Access Control using TrustSec ( PDF - 9 MB )


Solution Overviews (10)


Cisco TrustSec 6.3 System Bulletin ( PDF - 488 KB )

Cisco TrustSec 6.1 System Bulletin ( PDF - 466 KB )

Cisco TrustSec 6.0 Platform Capability Matrix ( PDF - 371 KB )

Cisco TrustSec 6.0 System Bulletin ( PDF - 545 KB )

Cisco TrustSec 5.2 Platform and Capability Matrix ( PDF - 366 KB )

Cisco TrustSec 5.0 Platform Support Matrix

Cisco TrustSec 5.0 System Bulletin ( PDF - 479 KB )

Cisco TrustSec Accelerates and Simplifies Network Security Solution Overview

eBook: Segment Your Network for Stronger Security ( PDF - 3 MB )

