Cisco Identity Services Engine (ISE) 3.4 - 基于身份的网络访问控制和策略实施系统
思科身份服务引擎 (ISE) - 下一代 NAC 解决方案 (August 2025 Patch Release)
请访问原文链接:https://sysin.org/blog/cisco-ise-3/ 查看最新版。原创作品,转载请保留出处。
作者主页:sysin.org
思科身份服务引擎 (ISE)
了解和控制网络上的设备和用户
利用整个堆栈中的情报来执行策略、管理终端并提供可靠访问。零信任的多云 NAC 使之成为可能。
产品概述
占据有利地势
在零信任架构中,ISE 是策略决策点 (sysin)。它从堆栈中收集情报以验证用户和终端,自动包含威胁。
利用弹性优势
弹性始于安全连接。ISE 有助于确保只有受信任的用户及其设备才能访问您的自我管理网络中的资源。
可视性优于 20/20
了解谁在连接到您的网络、他们在使用什么设备以及他们正在使用什么连接是关键。ISE 使用关键情报自动识别、分类和分析设备。
摆脱束缚
从受束缚的基础设施切换到基础设施即代码 (IaC) 有助于保持业务完整性,同时使访问和策略与您的战略和目标保持一致。
选定立场
使用 ISE 3.x 验证您的设备状态,看看它与您的安全策略的符合程度。ISE 致力于保护您的网络、数据和资源免受恶意攻击。
系统要求
✅ 支持的硬件
支持 Cisco Secure Network Server 3700 系列设备。
思科安全网络服务器 (SNS) 3700 系列设备基于思科统一计算系统 (Cisco UCS) C220 机架式服务器,并专门配置为支持思科 ISE。思科 SNS 3700 系列设备旨在为各种工作负载提供高性能和高效率。
Cisco SNS 3700 系列设备提供以下型号:
- Cisco SNS 3715 (SNS-3715-K9)
- Cisco SNS 3755 (SNS-3755-K9)
- Cisco SNS 3795 (SNS-3795-K9)
Cisco SNS 3715 设备专为小型部署而设计。Cisco SNS 3755 和 Cisco SNS 3795 设备具有多个冗余组件,例如硬盘和电源,适用于需要高度可靠系统配置的大型部署。建议将 Cisco SNS 3795 用于 PAN 和 MnT 角色
✅ 支持的虚拟化环境
Cisco ISE 支持以下虚拟化环境:
VMware
- OVA templates: VMware version 14 or higher on ESXi 6.7 and later.
- ISO file supports ESXi 6.5 or later.
You can deploy Cisco ISE on VMware cloud solutions on the following public cloud platforms:
- VMware cloud in Amazon Web Services (AWS): Host Cisco ISE on a software-defined data centre provided by VMware Cloud on AWS.
- Azure VMware Solution: Azure VMware Solution runs VMware workloads natively on Microsoft Azure. You can host Cisco ISE as a VMware virtual machine.
- Google Cloud VMware Engine: Google Cloud VMware Engine runs software defined data centre by VMware on the Google Cloud. You can host Cisco ISE as a VMware virtual machine on the software defined data centre provided by the VMware Engine.
Microsoft Hyper-V on Microsoft Windows Server 2012 R2 and later
KVM on QEMU 2.12.0-99 or above
AOS - 6.8 and 7.0, Nutanix AHV - 10.0
Cisco ISE 也可以部署在公有云平台上:
- Amazon Web Services (AWS)
- Microsoft Azure
- Oracle Cloud Infrastructure (OCI)
下载地址
ISE 3.0
Cisco Identity Services Engine 3.0.0
| Image | File Information | Release Date | Size |
|---|---|---|---|
| ise-patchbundle-3.0.0.458-Patch8-23080321.SPA.x86_64.tar.gz | Cisco Identity Services Engine Software Patch Version 3.0.0.458-Patch8-23080321 Apply this patch to an existing ISE 3.0.0 installation. | 10-Aug-2023 | 2088.78 MB |
| ACS-MigrationApplication-3.0.0-458.zip | ACS to Cisco Identity Services Engine Migration Application Version 3.0.0. Use this application to migrate configuration data from ACS. | 14-Sep-2020 | 20.85 MB |
| ISE-3.0.0.458-virtual-SNS3615-SNS3655-300.ova | ISE 3.0 OVA file - 300GB disk for Eval, Small, Medium (Recommend for Evaluation, PSN or PxGrid). | 14-Sep-2020 | 15006.09 MB |
| ise-3.0.0.458.SPA.x86_64.iso | Cisco ISE Software Version 3.0.0 full installation. This ISO file can be used for installing ISE on ISE-35x5 Appliances, SNS-36x5 Servers as well as a VM installation on VMWare ESX/ESXi/KVM/Hyper-V. | 14-Sep-2020 | 9634.28 MB |
| ise-upgradebundle-2.4.x-2.7.x-to-3.0.0.458.SPA.x86_64.tar.gz | Upgrade bundle for upgrading ISE version 2.4, 2.6, 2.7 to 3.0. This is a signed bundle for image integrity. | 14-Sep-2020 | 11057.65 MB |
| ise-urtbundle-3.0.0.458-1.0.0.SPA.x86_64.tar.gz | Upgrade Readiness Tool (URT) to validate config DB upgrade from 2.4, 2.6, 2.7 to 3.0. This is a signed bundle for image integrity. | 14-Sep-2020 | 605.88 MB |
ISE 3.1
Cisco Identity Services Engine 3.1.0
| Image | File Information | Release Date | Size |
|---|---|---|---|
| ise-patchbundle-3.1.0.518-Patch10-25012122.SPA.x86_64.tar.gz | Cisco Identity Services Engine Software Patch Version 3.1.0.518-Patch10-25012122 Apply this patch to an existing ISE 3.1.0 installation. | 28-Jan-2025 | 3314.36 MB |
| ISE-3.1.0.518b-virtual-SNS3615-SNS3655-300.ova | ISE 3.1 OVA file - 300GB disk for Eval, Small, Medium (Recommend for Evaluation, PSN or PxGrid) compatible with ESXi 6.7 or later. | 26-Aug-2022 | 17654.72 MB |
| ise-3.1.0.518b.SPA.x86_64.iso | Cisco ISE Software Version 3.1 full installation. This ISO file can be used for installing ISE on ISE-35x5 Appliances, SNS-36x5 Servers as well as a VM installation on VMWare//KVM/Hyper-V | 26-Aug-2022 | 10952.40 MB |
| ise-upgradebundle-2.6.x-3.0.x-to-3.1.0.518b.SPA.x86_64.tar.gz | Upgrade bundle for upgrading ISE version 2.6, 2.7, 3.0 to 3.1. This is a signed bundle for image integrity. | 26-Aug-2022 | 12608.76 MB |
| ise-urtbundle-3.1.0.518-1.0.0.SPA.x86_64.tar.gz | Upgrade Readiness Tool (URT) to validate config DB upgrade from 2.6,2.7,3.0 to 3.1. This is a signed bundle for image integrity. | 11-Aug-2021 | 899.63 MB |
ISE 3.2
Cisco Identity Services Engine 3.2.0
| Image | File Information | Release Date | Size |
|---|---|---|---|
| ise-patchbundle-3.2.0.542-Patch7-24100105.SPA.x86_64.tar.gz | Cisco Identity Services Engine Software Patch Version 3.2.0.542-Patch7-24100105 Apply this patch to an existing ISE 3.2.0 installation | 10-Oct-2024 | 1989.96 MB |
| ISE-3.2.0.542a-virtual-SNS3615-SNS3655-300.ova | ISE 3.2 OVA file - 300GB disk for Eval, Small, Medium (Recommend for Evaluation, PSN or PxGrid) | 27-Oct-2022 | 21296.83 MB |
| ise-3.2.0.542a.SPA.x86_64.iso | Cisco ISE Software Version 3.2 full installation. This ISO file can be used for installing ISE on SNS-35x5, SNS-36x5, SNS-37x5 Appliances, SNS-36x5 Servers as well as a VM installation on VMWare/KVM/Hyper-V | 27-Oct-2022 | 13757.91 MB |
| ise-upgradebundle-2.7.x-3.1.x-to-3.2.0.542c.SPA.x86_64.tar.gz | Upgrade bundle for upgrading ISE version 2.7, 3.0,3.1 to 3.2. This is a signed bundle for image integrity | 21-May-2024 | 15249.33 MB |
| ise-urtbundle-3.2.0.542a-1.0.0.SPA.x86_64.tar.gz | Upgrade Readiness Tool (URT) to validate config DB upgrade from 2.7,3.0,3.1 to 3.2. This is a signed bundle for image integrity | 27-Oct-2022 | 962.95 MB |
ISE 3.3
Cisco Identity Services Engine 3.3.0
| File Name | File Information | Release Date | Size |
|---|---|---|---|
| ise-patchbundle-3.3.0.430-Patch7-25070414.SPA.x86_64.tar.gz | Cisco Identity Services Engine Software Patch Version 3.3.0.430-Patch7-25070414 Apply this patch to an existing ISE 3.3.0 installation. | 15-Jul-2025 | 2638.45 MB |
| Cisco-ISE-3.3.0.430.SPA.x86_64.iso | Cisco ISE Software Version 3.3 full installation. This ISO file can be used for installing ISE on SNS-36x5, SNS-37x5 Appliances, SNS-36x5 Servers as well as a VM installation on VMWare. | 11-Jul-2023 | 12871.75 MB |
| ise-upgradebundle-3.0.x-3.2.x-to-3.3.0.430.SPA.x86_64.tar.gz | Upgrade bundle for upgrading ISE version 3.0, 3.1, 3.2 to 3.3. This is a signed bundle for image integrity. | 06-Jul-2023 | 14380.72 MB |
| ise-urtbundle-3.3.0.430-1.0.0.SPA.x86_64.tar.gz | Upgrade Readiness Tool (URT) to validate config DB upgrade from 3.0, 3.1, 3.2 to 3.3. This is a signed bundle for image integrity. | 06-Jul-2023 | 938.13 MB |
| Cisco-vISE-300-3.3.0.430.ova | ISE 3.3 OVA file - 300GB disk for Eval, Small, Medium (Recommend for Evaluation, PSN or PxGrid). | 11-Jul-2023 | 13881.12 MB |
ISE 3.4
Cisco Identity Services Engine 3.4.0
| File Name | File Information | Release Date | Size |
|---|---|---|---|
| ise-patchbundle-3.4.0.608-Patch3-25072801.SPA.x86_64.tar.gz | Cisco Identity Services Engine Software Patch Version 3.4.0.608-Patch3-25072801 Apply this patch to an existing ISE 3.4.0 installation. | 05-Aug-2025 | 1806.56 MB |
| ise-3.4.0.608a.SPA.x86_64.iso | Cisco ISE Software Version 3.4 full installation. This ISO file can be used for installing ISE on SNS-36x5, SNS-37x5 Appliances, as well as for VM installation on VMWare/KVM/Hyper-V Virtualization platforms. | 18-Dec-2024 | 13859.46 MB |
| ise-upgradebundle-3.1.x-3.3.x-to-3.4.0.608a.SPA.x86_64.tar.gz | Upgrade bundle for upgrading ISE version 3.1, 3.2, 3.3 to 3.4. This is a signed bundle for image integrity. | 18-Dec-2024 | 14862.97 MB |
| Cisco-vISE-300-3.4.0.608.ova | ISE 3.4 OVA file - 300GB disk for Eval, Small, Medium (Recommend for Evaluation, PSN or PxGrid). | 01-Aug-2024 | 14595.70 MB |
| Cisco-vISE-600-3.4.0.608.ova | ISE 3.4 OVA file - 600GB disk for Small or Medium (Recommend for PAN or MnT). | 01-Aug-2024 | 14606.03 MB |
| Cisco-vISE-1200-3.4.0.608.ova | ISE 3.4 OVA file - 1200GB disk for Medium or Large (Recommend for PAN or MnT). | 01-Aug-2024 | 14582.39 MB |
| Cisco-vISE-2400-3.4.0.608.ova | ISE 3.4 OVA file - 2400GB disk for Extra Large with 37xx support (Recommend for PAN or MnT). | 01-Aug-2024 | 14604.64 MB |
| ise-urtbundle-3.4.0.608-1.0.0.SPA.x86_64.tar.gz | Upgrade Readiness Tool (URT) to validate config DB upgrade from 3.1, 3.2, 3.3 to 3.4. This is a signed bundle for image integrity. | 01-Aug-2024 | 575.00 MB |
