Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ISE - Question about the NMAP service

Hi there,

I am currently playing around with the updated ISE 1.1 and tried out the new NMAP probe feature.

Is there any possibility to alter or expand the features of the NMAP implementation in the ISE, like additional scripts etc.

My main concern is to find a non obtrusive way to gain information about endpoints, without the user to do anything as opposed to opening a web page to ISE for a HTTP probe. So far the NMAP probe helped me a bit with iDevice recognition.

Any suggestions?

Thanks!

Regards,

Patrick

Everyone's tags (4)
4 REPLIES

ISE - Question about the NMAP service

Patrick,

As of now the nmap probe doesnt allow any user scripts to fire when an condition is matched. You can get in contact with the account team and they will be able to file a feature enhancement or see if it is on the roadmap for a future release.

thanks,

Tarik Admani

Tarik Admani *Please rate helpful posts*
New Member

ISE - Question about the NMAP service

What kind of information are you looking for, Patrick? And on what kinds of devices?

Jack

New Member

ISE - Question about the NMAP service

Hi Jack,

what I am looking for is to gain information about devices, which are connected to our network.

Let's say a device connects. At first I can only get basic information. Is it an Apple device, MS Workstation, VMWare device etc.

Now I want to dig further and find out, if for example this MS workstation is a WinXP or Win7 client.

All this should happen under the premise that no user intervention must happen.

I can achieve this by collecting HTTP probes, but this would require the user to open a web browser first, before anything else works (similar to web authentication) as I have not found another way to push the HTTP traffic to the ISE when not using the RADIUS NAC feature on the WLC.

Users in the current company WLAN are not required to do this and it should continue.

Regards,

Patrick

New Member

ISE - Question about the NMAP service

Patrick, I agree with Tarik that Cisco should enhance ISE in this way. Other NAC products can do this with no problem. No user involvement is needed, no agents are needed, no HTTP browser is needed. For example, here is the host-based information that ForeScout’s NAC product can give you: http://goo.gl/VhIWC

1330
Views
0
Helpful
4
Replies
CreatePlease to create content