Cisco Identity Services Engine (ISE) vs IBM Security Identity Governance and Intelligence comparison

The compared Cisco and IBM solutions aren't in the same category. Cisco is ranked #2 in NAC , with an average rating of 7.6, and holds a 20.5% mindshare in the category. IBM is ranked #14 in UP , and holds a 2.8% mindshare. Additionally, 87% of Cisco users are willing to recommend the solution, compared to 100% of IBM users who would recommend it.

Cisco Identity Services Eng...

Read 144 Cisco Identity Services Engine (ISE) reviews

16,039 Views
10,425 Comparison Views

87% willing to recommend

IBM Security Identity Gover...

Read 2 IBM Security Identity Governance and Intelligence reviews

1,031 Views
443 Comparison Views

100% willing to recommend

Cisco Identity Services Eng...

IBM Security Identity Gover...

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Identity Services Engine (ISE) and IBM Security Identity Governance and Intelligence based on real PeerSpot user reviews.

Find out what your peers are saying about Hewlett Packard Enterprise, Cisco, Fortinet and others in Network Access Control (NAC).

To learn more, read our detailed Network Access Control (NAC) Report (Updated: March 2026).

Buyer's Guide

Network Access Control (NAC)

March 2026

Download the complete report

Helped 889,855 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Identity Services Eng...

Average Rating

8.2

Reviews Sentiment

6.6

Number of Reviews

144

Ranking in other categories

Network Access Control (NAC) (2nd), Cisco Security Portfolio (4th)

IBM Security Identity Gover...

Average Rating

7.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

User Provisioning Software (14th), Identity Management (IM) (31st)

Mindshare comparison

Cisco Identity Services Engine (ISE) and IBM Security Identity Governance and Intelligence aren’t in the same category and serve different purposes. Cisco Identity Services Engine (ISE) is designed for Network Access Control (NAC) and holds a mindshare of 20.5%, down 26.3% compared to last year.
IBM Security Identity Governance and Intelligence, on the other hand, focuses on User Provisioning Software, holds 2.8% mindshare, up 2.0% since last year.

Network Access Control (NAC) Mindshare Distribution
Product	Mindshare (%)
Cisco Identity Services Engine (ISE)	20.5%
Aruba ClearPass	19.5%
Fortinet FortiNAC	14.6%
Other	45.4%

Network Access Control (NAC)

User Provisioning Software Mindshare Distribution
Product	Mindshare (%)
IBM Security Identity Governance and Intelligence	2.8%
SailPoint Identity Security Cloud	20.1%
One Identity Manager	10.1%
Other	67.0%

User Provisioning Software

Featured Reviews

NicolasFigaro

Network and Technology Information Manager at Akkodis

Has improved authentication management and simplified visitor network access

The log capacity in Cisco Identity Services Engine (ISE) could be enhanced because today natively on the ISE can only have a look at the logs from the day before. You cannot search into the oldest logs; you have to use another tool for that. This can be blocking if you don't have any log consolidation solution. To do a search for an issue or something that happened two days ago, you cannot search directly in there. The capacity of Cisco Identity Services Engine (ISE) could be enhanced. Something between one week and one month for the log capacity would be nice.

Read full review

reviewer1830612

Head, Cybersecurity at a tech services company with 11-50 employees

We use the solution to ensure organizations conform to industry base certifications and best practices

We use the product to ensure organizations conform to industry base certifications and best practices and do not contradict their security policies within the base points they specify in the system, which are used to match everything against their governance use cases I think the product's most…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It has all of the features available, in fact, more than what you need."

"The WiFi portal in Cisco ISE is very useful for WiFi customers."

"Regardless of your industry, I would recommend Cisco ISE if you want good identity management."

"The most valuable features are authentication, we have more granular control on the access policies for the administrators. The solution is easy to use, has a center point administration, and has a good GUI."

"Since migrating towards doing wired ports over ISE with 802.1X and MAB authentication, our organization's security risk has been better, and we have been able to establish better layouts so devices can move and we don't have to worry about where they need to go."

"We manage and support the Cisco ISE platform for a big car rental company, and it is very stable and adds a lot of value to the network."

"The management part is much smoother, and it takes care of all the costs across branded devices as well, so that it is a single panel where we can manage all the end-to-end entry devices as well."

"Cisco Identity Services Engine (ISE) has simplified guest access management for us without compromising security for our organization."

More Cisco Identity Services Engine (ISE) pros

"I would rate the price eight out of 10, with 10 as the best value for money."

"We use the product to ensure organizations conform to industry base certifications and best practices and do not contradict their security policies within the base points they specify in the system, which are used to match everything against their governance use cases."

"Lifecycle management, governance and documentation."

"This solution has a very good dashboard and the documentation is also very good, and life cycle management and governance are also good features in this solution."

Cons

"It would be ideal if Cisco could provide some short training videos or documentation to customers to help them understand how to use the product."

"There should be an easier way to do the upgrades."

"The licensing scheme is complex and could use enhancement to provide more options."

"The area where things could be improved is education. It's complicated to deploy initially because you have to know what you're getting into."

"It does a good job of establishing trust for every access request. We have had a little bit of a challenge with profiling, but we are probably about 80% there."

"A main issue is that the upgrade process, over time, is extraordinarily fragile. Repeatedly, over the past several years, when we've tried to upgrade our Cisco ISE implementation, the upgrade has broken it."

"There is much room for improvement, especially after having perused the documentation on the solution's website. The solution lacks properly knowledgeable support, especially internationally, and this is why I am exploring other applications."

"Adding new devices was a little cumbersome. I haven't done it that many times, but I remember that adding new devices to the authentication piece of it was a little cumbersome. The way I was shown to do it, I thought it was odd because we had to go into the active device, copy the file down, export it, make some changes to it, and then reimport it as opposed to being able to click it and having a template to fill out."

More Cisco Identity Services Engine (ISE) cons

"The solution is also a bit pricey for the Nigeria region."

"Self service center is not always easy to understand."

"I think improvements could be made in the self service center, making it easier for the user to understand."

"The solution is a bit pricey for some regions."

Pricing and Cost Advice

"Cisco has actually transitioned to a lot of subscription models, fees, and licenses."

"Cisco ISE's licensing can get pricey."

"Pricing and licensing are not my expertise. As far as budgeting is concerned, we run an ELA with Cisco. It's a part of our ELA."

"The licensing can be confusing, but it is still pretty good."

"The pricing is fair for what it does."

"I have complaints. I don't enjoy the licensing model. Once we moved from 2.7 to 3.1, switching from Base, Plus, and Apex to Essential and Advantage in Premier, we went from a perpetual, with our base licenses, to now a subscription-base. So, we will have to renew those licenses every year, and I'm not a fan of that for our base licenses. Apex/Premier, we already expected, which is fine, but for basic connectivity, I am not a fan of that."

"I think the price is okay."

"I believe I have paid around $1,000 in licensing fees. The license is annual."

More Cisco Identity Services Engine (ISE) pricing and cost advice

"I would rate the price eight out of 10, with 10 as the best value for money."

See which vendors are best for you

Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.

See recommendations

889,855 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

10%

Financial Services Firm

10%

Government

Computer Software Company

Financial Services Firm

15%

Construction Company

14%

Government

11%

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	45
Midsize Enterprise	32
Large Enterprise	91

No data available

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?

Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...

See all answers

What are the main differences between Cisco ISE and Forescout Platform?

OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...

See all answers

How does Cisco ISE compare with Fortinet FortiNAC?

Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...

See all answers

Ask a question

Earn 20 points

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE)

Compared 24% of the time

Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)

Compared 16% of the time

Forescout Platform vs Cisco Identity Services Engine (ISE)

Compared 7% of the time

Portnox vs Cisco Identity Services Engine (ISE)

Compared 3% of the time

CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)

Compared 3% of the time

More Cisco Identity Services Engine (ISE) Competitors

SailPoint Identity Security Cloud vs IBM Security Identity Governance and Intelligence

Compared 19% of the time

Saviynt Identity Cloud vs IBM Security Identity Governance and Intelligence

Compared 11% of the time

ForgeRock vs IBM Security Identity Governance and Intelligence

Compared 8% of the time

OpenText Identity Governance vs IBM Security Identity Governance and Intelligence

Compared 6% of the time

Microsoft Entra ID vs IBM Security Identity Governance and Intelligence

Compared 5% of the time

More IBM Security Identity Governance and Intelligence Competitors

Product Reports

Buyer's Guide

Cisco Identity Services Engine (ISE)

April 2026

Cisco Identity Services Engine (ISE) report

Download Cisco Identity Services Engine (ISE) product report

Buyer's Guide

User Provisioning Software

April 2026

IBM Security Identity Governance and Intelligence report

Download IBM Security Identity Governance and Intelligence product report

Also Known As

Cisco ISE

IGI, IBM Security Identity Manager, ISIM

Overview

Cisco Identity Services Engine offers robust authentication, posture profiling, guest and secure access, and dynamic policy management. Known for its seamless integration with Cisco tools and network access control features, it ensures secure device and user authentication across networks.

Cisco Identity Services Engine is renowned for its capabilities in managing authentication, guest access, and policy management through segmentation. Its TrustSec functionality, alongside RADIUS and TACACS+ support, provides enhanced security, further augmented by its ability to operate in diverse environments. Its scalability and integration with Cisco solutions aid in maintaining network visibility and access control. Challenges include the complexity of initial deployments, somewhat cumbersome documentation, and limited integration in multi-vendor environments. While encountering issues in stability and updates, the demand for better analytics and straightforward troubleshooting alongside cost-effective licensing is notable.

What are the key features of Cisco Identity Services Engine?

Authentication: Secures user and device access to networks using robust authentication protocols.
Posture Profiling: Provides in-depth analysis of device compliance with security policies.
Guest Access Management: Allows controlled network access for guest users through streamlined processes.
Dynamic Policy Management: Enables automatic adjustment of security policies based on real-time data.
Segmentation via TrustSec: Enhances security levels by segmenting network traffic based on identity.

What benefits or ROI should users expect from Cisco Identity Services Engine?

Comprehensive Security: Ensures enforceable security policies across network access points.
Enhanced Integration: Facilitates seamless collaboration with existing Cisco infrastructures.
Improved Compliance: Helps meet industry security standards for network access and user rights.
Increased Visibility: Provides detailed insights into network traffic and user activities.
Device Management Efficiency: Streamlines the process of managing diverse devices within a single framework.

Industries implement Cisco Identity Services Engine primarily for network access control, ensuring secure authentication and segmentation in both wired and wireless environments. Supporting policies like bring-your-own-device and compliance standards, ISE manages identity-based access control, especially beneficial for entities that require detailed user rights management and integration within enterprise networks.

Cisco

IBM Security Identity Governance and Intelligence (IGI) delivers a business-centric approach to Identity Management and Governance. It empowers business and IT to work together to meet regulatory compliance and security goals across enterprise applications and data. IGI covers enterprise user lifecycle management, access risk assessment and mitigation, certification, password management as well as powerful analytics and reporting to enable business to make the right decisions on enterprise access.

IBM

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University

E.ON Global Commodities

Buyer's Guide

Network Access Control (NAC)

March 2026

Download Free Report

Find out what your peers are saying about Hewlett Packard Enterprise, Cisco, Fortinet and others in Network Access Control (NAC). Updated: March 2026.

DOWNLOAD NOW

889,855 professionals have used our research since 2012.

We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.