It entrenched its position in the market with its flagship Identity Service Engine (ISE) NAC platform. This 802.1X, Remote Authentication Dial-In User Service (RADIUS)-based platform is used to securely bring end-user devices onto a network, enforce endpoint compliance, share endpoint visibility with other network applications, and act automatically and dynamically on security events found by network sensors.

Cisco grabbed the first-mover advantage in the NAC market with the introduction of Cisco ACS in 1992 to address access control requirements. The company’s highly efficient routers and ethernet switches earned it the reputation of being a trusted authority on network architecture and platform installations.

As Cisco uses standards-based technologies, its solutions can be integrated with third-party IT and security technologies. Hence, its technologies can be used to enable or enhance any type of network security technology, including data loss protection, behavioral analytics, and file management.

Notably, in response to market demand, Cisco resolved the issue of onboarding rogue devices onto a network using a proprietary technology to connect an endpoint with the right server in the network. Cisco ISE facilitates the integration of RADIUS authentication and Transport Layer Security (TLS) communication to ensure all devices are policy-compliant before they can access the network. For non-802.1X NAC deployments, endpoints are often dynamically discovered using network protocols such as Simple Network Management Protocol (SNMP) or Windows Management Instrumentation (WMI).

“With ISE, Cisco makes a concerted effort to balance the needs of security, endpoint policy, and enforcement as well as network segmentation for a significant number of end users, with minimum effort,” said Christopher Kissel, Senior Industry Analyst, Network Security, Frost & Sullivan. “The combination of integrations, risk-based analytics on Cisco ISE, and contextual awareness endows the platform with numerous capabilities to serve IT, security, and operational networking needs.”

“We’re honored that Frost & Sullivan recognises the understated differences that makes Cisco ISE best in its class.” said Ben Munroe, Sr. Marketing Manager for Cisco security solutions. “ISE is proven to be effective at unifying and simplifying BYOD, guest and IoT access control, open multivendor intelligence sharing, data protection, and automated threat mitigation.”