Cisco Cisco Identity Services Engine 1.4 시작 가이드
If the threat is urgent, the DNS Firewall administrator may use the
pxGrid Adaptive Network Control feature of ISE to provide Rapid Threat
Containment actions directly from the Infoblox management console.
pxGrid Adaptive Network Control feature of ISE to provide Rapid Threat
Containment actions directly from the Infoblox management console.
How Cisco ISE and Infoblox Integration Works
With the ISE integration with Infoblox:
• Cisco ISE provides its user identity and network privilege information
to Infoblox DDI and DNS Firewall via pxGrid.
• ISE contextual data is also appended to associated events in Infoblox
to provide the additional context of the user and network-access
level, so analysts can better understand the significance of a security
or IPAM event.
level, so analysts can better understand the significance of a security
or IPAM event.
• Infoblox DNS Firewall uses ISE as a conduit for taking Rapid Threat
Containment actions within the Cisco network infrastructure. Infoblox
can instruct ISE to undertake quarantine, investigation, or access-
block actions on users and devices based on pxGrid Adaptive
Network Control policies that have been defined in ISE.
can instruct ISE to undertake quarantine, investigation, or access-
block actions on users and devices based on pxGrid Adaptive
Network Control policies that have been defined in ISE.
• All of these functions can be logged and reported on within the
Infoblox Network Insight console, providing unified user security threat
and IP address leasehold reporting.
and IP address leasehold reporting.
Some of the key ISE attributes available for use by Infoblox for user- and
network-related context are:
network-related context are:
• User: User name, IP address, authentication status, location
• User class: Authorization group, guest, quarantine status
• Device: Manufacturer, model, OS, OS version, MAC address, IP
• User class: Authorization group, guest, quarantine status
• Device: Manufacturer, model, OS, OS version, MAC address, IP
address, network connection method (wired or wireless), location
• Posture: Posture compliance status, antivirus installed, antivirus
version, OS patch level, mobile device posture compliance status
(through Enterprise Mobility Management and Mobile Device
Management ecosystem partners)
(through Enterprise Mobility Management and Mobile Device
Management ecosystem partners)
This suite of user- and network-aware capabilities from the Cisco ISE
and Infoblox integration streamline the process of threat detection and
simplify the implementation of responses by IT. You are empowered to
greatly reduce the time to remediation of network security threats and
swiftly respond to inappropriate network use.
and Infoblox integration streamline the process of threat detection and
simplify the implementation of responses by IT. You are empowered to
greatly reduce the time to remediation of network security threats and
swiftly respond to inappropriate network use.
Next Steps
To learn more about the Cisco ISE, visit
To learn more about Cisco pxGrid, visit
For additional information regarding ISE and other ecosystem partner
integrations, visit
integrations, visit
At-A-Glance
At-a-Glance
© 2015 Cisco and/or its affiliates. All rights reserved. Cisco and the Cisco logo are trademarks or registered trademarks of
Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/
go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner
does not imply a partnership relationship between Cisco and any other company. (1110R)
C45-736068-00 10/15