Cisco Cisco Prime Infrastructure 3.0 White Paper

 

 

© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. 

Page 67 of 83 

Advance Configuration Topics 

 

Cisco ISE is a next-generation identity and policy-based network access platform that helps enable enterprises to 

enforce compliance, enhance infrastructure security, and streamline their service operations. See the figure above. 

Cisco Prime Infrastructure manages the wired and the wireless clients in the network. When Cisco ISE is used as a 

RADIUS server to authenticate clients, Cisco Prime Infrastructure collects additional information about these clients 

from the ISE and provides all relevant client information to Cisco Prime Infrastructure to be visible in a single 

console. 

 

Cisco Prime Infrastructure can be integrated with ISE by navigating to Design > External Management Servers 

(under Management Tools) > ISE Servers. You can add a new ISE server by selecting Add Identity Services 

Engine as shown in the figure above. You will then be prompted for some basic ISE connectivity information 

(see the figure at above). Once that is entered, the ISE server is then added to the list. Most of the remaining 

configuration will need to be done on the ISE itself. 

 TIP: ISE has a locking mechanism if the password is entered incorrectly three times in a row. It is extremely 

important to use the correct credentials when integrating within Cisco Prime Infrastructure; otherwise the ISE web 

interface will be locked out. Users will then need to log in through the ISE CLI to unlock the web interface. 

See “

” for detailed ISE configuration tasks that are needed to 

populate the data consumed by Cisco Prime Infrastructure (the steps are the same as with NCS 1.1/ISE 1.x 

integration).