ISE Threat Centric NAC Service

Cisco ISE TME Pavan Gupta demonstrates how to integrate Cisco Secure Endpoint, Qualys, Rapid7, and Tenable with ISE for Threat-Centric NAC (TC-NAC).

00:00 Intro and Agenda
00:34 What is Compliance?
01:40 ISE Compliance Services (Posture, MDM, TC-NAC) and Licensing
02:53 Threat-Centric NAC Service and Integrations:
Vulnerability Management: Qualys, Rapid7, Tenable
Threats: Cisco Secure Endpoint
07:26 ISE Threat Dictionary and Attributes
08:15 How it Works
10:06 Case 1: When ISE has no vulnerability info
11:47 Case 2: Vulnerability info is present in ISE
13:52 Case 3: Vulnerability info in ISE is beyond X configured hours
15:06 Case 4: Reassess Vulnerability Info
16:16 Cisco ISE + Vulnerability Management Vendor Integration
TC-NAC Service can be enabled on single ISE Node in a deployment
17:50 Tenable Integration Overview
22:54 Demo: Enable ISE TC-NAC Service
24:35 Demo: ISE and Tenable Integration
39:34 Qualys Integration Overview
43:39 Demo: ISE and Qualys Integration
53:30 Rapid7 Integration Overview
54:30 Cisco Secure Endpoint Overview
1:00:10 Demo: Cisco Secure Endpoint
1:05:38 ISE 2.x to 3.x License Migration Offer | https://cs.co/ise-licensing
1:07:09 Question: How much network load does a network scan produce?

Resources
https://cs.co/ise-guides#CSE
https://cs.co/ise-guides#Qualys
https://cs.co/ise-guides#Rapid7
https://cs.co/ise-guides#Tenable