Try our new research platform with insights from 80,000+ expert users

Cisco DNA Center vs Cisco Identity Services Engine (ISE) comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco DNA Center
Average Rating
8.0
Reviews Sentiment
6.3
Number of Reviews
41
Ranking in other categories
Network Management Applications (1st), Network Monitoring Software (12th), Network Automation (2nd)
Cisco Identity Services Eng...
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
142
Ranking in other categories
Network Access Control (NAC) (1st), Cisco Security Portfolio (1st)
 

Mindshare comparison

Cisco DNA Center and Cisco Identity Services Engine (ISE) aren’t in the same category and serve different purposes. Cisco DNA Center is designed for Network Management Applications and holds a mindshare of 26.9%, down 29.2% compared to last year.
Cisco Identity Services Engine (ISE), on the other hand, focuses on Network Access Control (NAC), holds 26.3% mindshare, down 31.4% since last year.
Network Management Applications
Network Access Control (NAC)
 

Q&A Highlights

Aymen FHOULA - PeerSpot reviewer
Jul 07, 2023
 

Featured Reviews

AvrahamSonenthal - PeerSpot reviewer
Efficiently manages our wireless network and provides valuable monitoring features
The platform's biggest benefit has been in managing our wireless network. Having a single pane of glass to control all wireless controllers and access points and to monitor activity has been a significant advantage. We're a small federal agency with around 300 network devices, so automation is a minor focus. It's more relevant for larger networks. The main benefits we've seen are in inventory management and the potential for configuration automation. However, I recommend using the DNA Centre only for larger networks with over a thousand devices; otherwise, it may not be cost-effective. Before proceeding, ensure that your devices are compatible with DNA Center, as not all Cisco devices are supported. Also, investing in proper training is different from plug-and-play. I rate it an eight.
SunilkumarNaganuri - PeerSpot reviewer
Enhanced device administration hindered by complex deployment and security limitations
Cisco Identity Services Engine (ISE) needs to improve the profiling preauthentication. They are very poor in asset classification and should focus on improving the preauthentication profiling, especially for NAC use cases. This will give them a roadmap for software-defined access (SDA) use cases and network segmentation. Threat detection capabilities are very weak. Additionally, the product is vulnerable and has many bugs.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I like the visibility, instant build, network, policies, and the ability to control access. I also like that you can visualize your whole network."
"The solution has the capability to scale."
"What's most valuable in Cisco DNA Center is the ability to manage any Cisco infrastructure and device through it. Setup was straightforward."
"DNA Center is scalable."
"Cisco DNA Center is a user-friendly solution."
"The automation features are significant, reducing configuration time. This means outstanding functionality. By deploying the controller automatically, the rest becomes automated"
"The most valuable features of Cisco DNA Center are wireless assurance and visibility."
"Automation is another key highlight. With automation, you can automate everything through a single port."
"We found all the features of the product to be valuable."
"The access policies, and all of the policies in Cisco ISE, are important to us."
"The most valuable feature is the flexibility of the policy sets."
"I've had no issues with scalability. I started using it on two campuses, and now I'm using it across the country and scaling it across subsidiaries in other countries."
"It is stable and easy to use."
"It does what it's supposed to. We use a certificate-based authentication method for corporate-managed devices. That means when a user walks in with their managed laptop and plugs it into the network, it chats with Cisco ISE in the background, allows it on the network, and away they go."
"I found the CMDB Direct Connect in Cisco ISE 3.2 the most promising feature for my use case."
"The way we can trust this solution is the most valuable. We have no issue with this product. It is a competitive product. You need to have a very good and deep knowledge of the product to take the full benefits of all the features, but it is a good product."
 

Cons

"Cisco could improve the security side of their solutions."
"The solution needs to improve the dashboard."
"There is a limitation with the number of VRFs that you can have in your network, and this has caused us problems with some customers."
"It seems to be a little bit more centered toward wireless than wired. You've got more options you can do wirelessly than you can with the wired switches, but it works for what we need it to do. We would like to see a little bit more about the traffic, and we're looking at what's out there to see about that. We are looking at something that might give us a bit more insight into the actual traffic. If they had the full functionality on the wired side, as they do on the wireless side in terms of being able to view traffic and everything, it would be good."
"Requires more focus on the digital side of things."
"I would like is to have a small information pointer available. It could be a plus feature that I want to implement. When I hover my mouse over the user interface, it should provide a brief explanation. It would be helpful to have it incorporated into the UI."
"There should be an option for automation of template deployment by using the stored data. It is not easy to save configuration information for lots of devices without using other tools. There should be a tighter, better repository of information that can be merged with the templates."
"The solution's integration feature can be better."
"Also, the menus could have been much simpler. There are many redundant things. That's a problem with all Cisco solutions. There are too many menus and redundant things on all of them."
"There is room for improvement in its ability to allow end users to self-enroll their devices. Instead, you should be able to assign that permission by AD group, which is currently not available."
"The solution lacks properly knowledgeable support, especially internationally, and this is why I am exploring other applications."
"The solution can lag somewhat as we have a large database."
"Cisco ISE is very complex and not very easy to deploy."
"The licensing documentation needs to be better."
"Cisco ISE integration with Cisco ACI is something that can be done in a less complex way. And the simplification in that area may help us do better."
"The learning curve is steep and the initial setup is complex."
 

Pricing and Cost Advice

"Affordability is a problem because it's created for large enterprises only. So, some customers, even if their engineers want the solution, might have problems with budget limitations."
"We get a yearly license at the time we buy the product."
"Our licensing agreement is for three years."
"The solution is expensive."
"The product is very costly."
"I do know that Cisco does offer some really good promotions for DNA Center to bring the costs down."
"Cisco DNA Center is too expensive."
"Cisco DNA Center is a licensed product with multiple levels of licensing available such as basic, advanced, and essential. I don't have the exact figure, but Cisco DNA Center is costly. For example, the box has information about the essential license and costs a considerable amount of money. You need to pay extra to use advanced features in Cisco DNA Center. My company sees Cisco DNA Center as a solution that's worth the money, which is why it invested in the solution. If you want centralized management for your network, especially when upgrading it, Cisco DNA Center is perfect, but it's more suitable for a large-scale rather than a small-scale network."
"Its price is probably good if you use all of its features and functionalities to protect your environment. If you use only a part of the functionality, its price is too high. It is just a question of value and the functionality you use."
"Hardware appliances are expensive...Now moving to DNA-styled licensing, we have subscription-based licensing for everything. I hope it will continue to be fair, but we will have to wait and see."
"It is fair."
"Pricing is not a problem for Cisco because it has a lot of features and not much competition, although it's more expensive than other products. But if I do a cost-benefit analysis, Cisco provides high quality."
"It costs around 50,000 baht in the first year, but I'm unsure about the second year."
"If you go directly with Cisco for the implementation it's very, very expensive."
"Pricing and licensing are not my expertise. As far as budgeting is concerned, we run an ELA with Cisco. It's a part of our ELA."
"It's an expensive solution when compared to other vendors."
report
Use our free recommendation engine to learn which Network Management Applications solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Answers from the Community

Aymen FHOULA - PeerSpot reviewer
Jul 7, 2023
Jul 7, 2023
Prerequisite: 1) ISE and Cisco DNAC are compatible versions. 2) ISE GUI password matches ISE CLI password. 3) ISE and DNAC should have full privilege Credential. 4) Enable pxGride Service. 5) Enable ERS Read/Write service. 6) ISE and DNA Should be reachable.
See 2 answers
MOHAMEDELSHERIF - PeerSpot reviewer
Mar 9, 2023
Hi Anyman 1- first you need to enable pixgrid setting at CIsco ISE at Admin setting. 2- You Need to activate ISE as Radius in DNA Setting tab at the left corner (user name and password is any ISE administrator user ). 3- From Network Hierarchy Tab in DNA Cisco  choose ISE as your AAA server. 4- You need to create STG  group at policy tab to create the proper user grouping. 4-Then go to provision / fabric / switch interface then apply ISE as your authentication profile. Most Importantly you need to ensure that your fabric switch has DNA advantage license
VK
Jul 7, 2023
Prerequisite: 1) ISE and Cisco DNAC are compatible versions. 2) ISE GUI password matches ISE CLI password. 3) ISE and DNAC should have full privilege Credential. 4) Enable pxGride Service. 5) Enable ERS Read/Write service. 6) ISE and DNA Should be reachable.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Government
10%
Manufacturing Company
9%
Financial Services Firm
6%
Educational Organization
25%
Computer Software Company
14%
Financial Services Firm
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Cisco DNA Center?
The most valuable feature of the solution stems from the fact that it gives some kind of ease in operations, especially since our company is moving from CLI to GUI-based configuration.
What needs improvement with Cisco DNA Center?
The system is working fine for me currently.
Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
 

Also Known As

DNA Center
Cisco ISE
 

Overview

 

Sample Customers

Information Not Available
Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
Find out what your peers are saying about Cisco, Hewlett Packard Enterprise, NetScaler and others in Network Management Applications. Updated: April 2025.
849,190 professionals have used our research since 2012.