https://www.liuluanyi.cn
部署前准备工作
- 规划好两台ISE的IP地址
- 两台ISE主机名
- 对IP做DNS解析
- NTP服务器地址(可选)
- DNS服务器地址(可选)
- 两台自签名证书
- 两台ISE版本一定要相同
- 一般还需要打补丁(可选)
安装过程
- ISE初始化
接下来就是等待时间,时间根据机器性能来决定,出现下图便可操作。
- 使用setup进行配置
接下来ISE会去验证你的网关和NTP服务的通信是否正常。过程中继续等待。。。
成功进入之后,我们需要去查看ise各种应用的运行状态。
- 查看状态
在Application Server是running状态时,浏览器才可以打开。
- 浏览器输入自定义的IP地址打开WEB页面
由于原密码忘记,被锁在外面,下面主要以文字阐述了。
- 分布式节点部署
- 主节点部署(
Configure a Primary PAN)
Step 1 Choose Administration > System > Deployment.
The Register button will be disabled initially. To enable this button, you must configure a Primary PAN.
Step 2 Check the check box next to the current node, and click Edit.
Step 3 Click Make Primary to configure your Primary PAN.
Step 4 Enter data on the General Settings tab.
Step 5 Click Save to save the node configuration.Secondary Cisco ISE Node
Step 1 Log in to the Primary PAN.
Step 2 Choose Administration > System > Deployment.
Step 3 Click Register to initiate registration of a secondary node.
Step 4 Enter the DNS-resolvable fully qualified domain name (FQDN) of the standalone node that you are going to register (in the format hostname.domain-name, for example, abc.xyz.com). The FQDN of the Primary PAN and the node being registered must be resolvable from each other.
Step 5 Enter the UI-based administrator credentials for the secondary node in the Username and Password fields.
Step 6 Click Next.
Step 7 Select the personas and services to be enabled on the node, and then click Save.底部点击阅读原文网页版
阅读效果更佳
