Detailed Course Outline
Advanced ISE Deployment Architectures
- ISE Personas Overview (PAN, MnT, PSN)
- High Availability (HA) & Redundancy Concepts
- Distributed Deployment Models
- Configuring Redundancy & Load Balancing
- PSN Redundancy (With and Without Load Balancing)
- NAD Fallback and Recovery
- Certificate Services Redundancy
- Upgrade and Patching Best Practices
Scaling ISE Services
- Bandwidth and Latency Considerations
- Service-Specific Scaling:
- RADIUS
- AD/LDAP
- Passive ID
- Guest Access
- Web Services
- TACACS+
- Profiling and Database Replication
- MnT: Logging Optimization and Noise Suppression
- System Health Monitoring and Load Management
Backup and Restore
- Backup Strategy and Scheduling
- Data vs Operational Data Backup
- Backup Configuration and Validation
Integration with External Identity Sources
- Integration with Entra ID
- MDM Integration:
- Microsoft Endpoint Manager (Intune)
- Meraki
- SAML SSO and Multi-Factor Authentication (MFA)
- DUO TACACS+ Authentication (Instructor Demo)
- Deploying ISE in the Cloud (Instructor Demo)
- Integration with Splunk
Review of Core SISE Components & Best Practices
- Policy Sets, Authentication, Authorization
- TEAP and IPSK Configuration
- Profiling Deep Dive
- Cisco AI Analytics
Troubleshooting and Performance Optimization
- ISE Logs and Debugging Tools:
- Live Logs
- TACACS+ Logs
- Syslog and Debugging Techniques
- Troubleshooting Failures:
- Authentication & Authorization
- Profiling Issues and Common Misconfigurations
- Policy Misconfigurations and Device Authentication
- PCAP Analysis
- Live Sessions and Session Attributes
- RADIUS Policy Evaluation and Latency
- Diagnostic Tools and Debug Wizards
- Suppression & Collection Filters
- Log Downloading and Alarm Management
- Reporting and Context Visibility
Live Fire Troubleshooting Challenge
- Randomized Troubleshooting Scenarios (Instructor-Led)