Emmanuel Cano Gutierrez, Cisco Security Consulting Engineer, shows us how to get better deployment performance monitoring and log analytics using ISE 3.2 and later.
Topics:
00:00 Intro and Poll Question
03:10 Agenda
04:18 ISE Features at a Glance
06:25 Previous ISE Monitoring Options and Questions
09:35 Infrastructure Monitoring (System 360)
12:35 Running Metric Queries in Grafana
14:14 Monitoring Considerations
15:50 Demo: System 360 ISE Infrastructure Monitoring Overview
18:36 - Create Custom Queries
21:12 - Create a Custom Dashboard
27:15 Poll: Kibana and ElasticSearch Poll
28:45 Log Analytics with ELK (Elasticsearch, Logstash & Kibana)
30:32 Log Analytics - CPU & Memory considerations
32:07 Deployment Scenarios with Log Analytics
33:36 `show application status ise` services
34:44 Demo: Log Analytics Dashboard
39:52 - RADIUS Authentication Dashboard
41:52 - TACACS Authentication Dashboard
43:07 - Create a Custom Dashboard
44:44 - Create a Security Operations Center (SOC) View with Role Based Access Control (RBAC)
48:20 - Login as SocEng
50:06 Log Analytics Limitations for Custom Dashboards
⚠ export your custom dashboards before patching!
51:28 Questions:
- What happens if the SMNT goes down does?
- Is it possible to view the ISE deployment status in Infrastructure Monitoring?
27 авг 2024