Cisco Cisco Catalyst 2960X-48FPS-L Switch Libro blanco
© 2015 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information
Page 3 of 19
White Paper
Introduction
The Cisco® Identity Services Engine (ISE) is the market-leading platform for security-policy
management. It unifies and automates highly secure access control to proactively enforce role-
based access to enterprise networks and network resources. The purpose of this document is
to present general guidelines on ISE solution with 2K, 3K, 4K series access switching platform.
This document is intended to help customers understand the critical elements of ISE solution
that was validated in Cisco lab for release 15.2(2)E3 (3.6.3) together with ISE 1.3 patch 3. The
recommendations in this document will help our customers with successful deployments. At
the end of the document there are additional references to configuration and design guides,
ISE compatibility matrix, and Cisco TrustSec.
management. It unifies and automates highly secure access control to proactively enforce role-
based access to enterprise networks and network resources. The purpose of this document is
to present general guidelines on ISE solution with 2K, 3K, 4K series access switching platform.
This document is intended to help customers understand the critical elements of ISE solution
that was validated in Cisco lab for release 15.2(2)E3 (3.6.3) together with ISE 1.3 patch 3. The
recommendations in this document will help our customers with successful deployments. At
the end of the document there are additional references to configuration and design guides,
ISE compatibility matrix, and Cisco TrustSec.
ISE Solution Topology
Cisco ISE
Active Directory, DNS
DHCP Server
Active Directory, DNS
DHCP Server
2960X and 3750x
Stack
4500 VSS
HTTP Server
Avaya Phone
3650 and 3850
Stack
Windows XP/ 7
Linux
Android
Phone
Phone
Cisco UCS
CTS link + Port-channel
Trunk link
Access link
Trunk link
Access link