Emmanuel Cano Gutierrez, Cisco Security Consulting Engineer, shows us how to get better deployment performance monitoring and log analytics using ISE 3.2 and later.
Topics:
00:00 Intro and Poll Question
03:10 Agenda
04:18 ISE Features at a Glance
06:25 Previous ISE Monitoring Options and Questions
09:35 Infrastructure Monitoring (System 360)
12:35 Running Metric Queries in Grafana
14:14 Monitoring Considerations
15:50 Demo: System 360 ISE Infrastructure Monitoring Overview
18:36 - Create Custom Queries
21:12 - Create a Custom Dashboard
27:15 Poll: Kibana and ElasticSearch Poll
28:45 Log Analytics with ELK (Elasticsearch, Logstash & Kibana)
30:32 Log Analytics - CPU & Memory considerations
32:07 Deployment Scenarios with Log Analytics
33:36 `show application status ise` services
34:44 Demo: Log Analytics Dashboard
39:52 - RADIUS Authentication Dashboard
41:52 - TACACS Authentication Dashboard
43:07 - Create a Custom Dashboard
44:44 - Create a Security Operations Center (SOC) View with Role Based Access Control (RBAC)
48:20 - Login as SocEng
50:06 Log Analytics Limitations for Custom Dashboards
⚠ export your custom dashboards before patching!
51:28 Questions:
What happens if the SMNT goes down does?
Is it possible to view the ISE deployment status in Infrastructure Monitoring?
Негізгі бет Next Generation ISE Telemetry, Monitoring and Custom Reporting, Part 1
Пікірлер