No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Identity Services Engine (ISE) vs Sophos Network Access Control comparison

Cisco and Sophos are both solutions in the Network Access Control (NAC) category. Cisco is ranked #2 with an average rating of 7.6, while Sophos is ranked #7 with an average rating of 7.5. Cisco holds a 19.4% mindshare in NAC, compared to Sophos’s 2.7% mindshare. Additionally, 87% of Cisco users are willing to recommend the solution, compared to 95% of Sophos users who would recommend it.
Cisco Identity Services Eng...
Read 144 Cisco Identity Services Engine (ISE) reviews
  • 17,442 Views
  • 11,337 Comparison Views
87% willing to recommend
Sophos Network Access Control
Read 24 Sophos Network Access Control reviews
  • 1,734 Views
  • 1,699 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 5, 2024

Sophos Network Access Control and Cisco Identity Services Engine (ISE) both compete in the network security space. While Sophos is appreciated for its pricing and support, Cisco ISE is considered superior due to its advanced features and integrations that justify its higher cost.

Features: Sophos Network Access Control offers streamlined access management, endpoint visibility, and simplified deployment for smaller networks. Cisco ISE provides comprehensive network segmentation, advanced policy enforcement, and better integration options, offering a robust solution for larger, complex networks.

Room for Improvement: Sophos could enhance its integration capabilities, increase scalability, and add advanced policy features. Cisco ISE could simplify initial setup, improve ease of use, and enhance cost-effectiveness for smaller installations.

Ease of Deployment and Customer Service: Sophos is known for easy deployment suiting smaller organizations with limited integration needs, coupled with good support. Cisco ISE requires a more complex setup but is backed by extensive documentation and a robust support network, beneficial for larger enterprises.

Pricing and ROI: Sophos Network Access Control is noted for its competitive pricing and low setup costs, ensuring a quick ROI. Cisco ISE demands a higher initial investment but provides greater value over time through its extensive features, suggesting a better long-term ROI for organizations needing advanced capabilities.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control Report (Updated: April 2026).
Buyer's Guide
Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
April 2026
Download the complete report
Helped 892,487 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Ranking in Network Access Control (NAC)
2nd
Average Rating
8.2
Reviews Sentiment
6.6
Number of Reviews
144
Ranking in other categories
Cisco Security Portfolio (4th)
Sophos Network Access Control
Ranking in Network Access Control (NAC)
7th
Average Rating
8.4
Reviews Sentiment
6.2
Number of Reviews
24
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of May 2026, in the Network Access Control (NAC) category, the mindshare of Cisco Identity Services Engine (ISE) is 19.4%, down from 25.8% compared to the previous year. The mindshare of Sophos Network Access Control is 2.7%, up from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Access Control (NAC) Mindshare Distribution
ProductMindshare (%)
Cisco Identity Services Engine (ISE)19.4%
Sophos Network Access Control2.7%
Other77.9%
Network Access Control (NAC)
 

Featured Reviews

NF
NicolasFigaro
Network and Technology Information Manager at Akkodis
Has improved authentication management and simplified visitor network access
The log capacity in Cisco Identity Services Engine (ISE) could be enhanced because today natively on the ISE can only have a look at the logs from the day before. You cannot search into the oldest logs; you have to use another tool for that. This can be blocking if you don't have any log consolidation solution. To do a search for an issue or something that happened two days ago, you cannot search directly in there. The capacity of Cisco Identity Services Engine (ISE) could be enhanced. Something between one week and one month for the log capacity would be nice.
Read full review
HirenPatel2 - PeerSpot reviewer
HirenPatel2
Manager at rspl
Have faced delays in support despite strong multi-layer policy configuration
I have observed some disadvantages as we have experienced one particular problem. We were facing an issue of synchronization of the endpoint with our firewall with help on a cloud for heartbeat syncing. However, it was not syncing as per our requirement. The user has to connect our firewall with the help of VPN. We were supposed to assume a solution on a cloud, which has good synchronization on a cloud with Sophos Central. It will sync with our firewall as well with the help of Sophos Central. Endpoint and firewall synchronization is not as smooth as we are expecting from Sophos Network Access Control. We have to connect with VPN. We are expecting that if we have already installed an endpoint on our system and it is connected to the internet, then it must be synchronized on a cloud with Sophos Central. Through Sophos Central, it must connect with our firewall. If the endpoint is configured on Sophos Central and the firewall is also configured in Sophos Central, then there should be no need to connect to VPN.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I like the logging feature."
"The policy sets give us more granular groups for end-user access."
"The endpoint profiling feature is among the most valuable because it keeps me from having to manually maintain a MAC address bypass list to track endpoints. I can have ISE profile them for me and then put them in the right bucket."
"The return on investment we have seen is related to time in terms of troubleshooting. The logs, such as the security logs, inform us of the issues that people have had. ISE has been very instrumental in helping isolate those issues. We've seen a lot of cost savings because we don't have to pay an IT person to waste time doing something that should be instantaneous."
"I would recommend this solution as it is very easy to set up and has a very easy user interface."
"It is scalable because we use a network load balancer at the front of the PSN. It can be extended as we want to multiply. It's scalable to our environment. We have around 8,000 users and we are planning to expand it."
"I like that Cisco ISE is easy to use."
"[One of the most valuable features] is just the ease of use. It's pretty simple to set up certs that we can add to our clients to make sure that they connect properly, [as is] whitelisting Mac addresses."
More Cisco Identity Services Engine (ISE) pros
"The system right now covers all my needs and it's very comfortable to work with."
"The initial setup is very easy."
"The solution offers very good visibility."
"The scalability of the system and the performance of the system and the solution's most valuable features."
"Sophos' technical support is great, very fast and responsive, and they always know how to fix the problem."
"The product has the capabilities to satisfy all kinds of needs that a company may have, and you can find the right solution without spending a lot of money."
"Sophos Network Access Control is easy to implement, use, and manage, and I recommend it."
"I found all Sophos Network Access Control features valuable, but IP blocking is the most useful."
More Sophos Network Access Control pros
 

Cons

"The intuitiveness of the user interface could be improved."
"The support could be faster and the pricing could be reduced."
"Third-party integration is important, as well as the continuous adaptation feature which is the AIOps. It would be helpful to include the AIOps."
"Cisco ISE could be simplified somewhat. I would also prefer certificate-based authentication over confirmation-based authentication for all the processes. It's possible for us to do a workaround, but the process needs to be simplified."
"There are always some things that I would request."
"Migration could be better. Right now, we back up with the new version, and it requires a lot of licensing and other things. Whenever we choose a product, it's very difficult because we have to meet the requirements of each feature. There is no standard feature, so the best system that we bought may not fit the solution. We have to look at every feature that the customer uses. If you compare it with other products like Aruba, it's not the same. With Cisco, I have to read all about the features on this version and the licensing required for the product. In Aruba, that thing is covered when you get one license because it covers almost everything. It could also be more scalable."
"Automation and integrations are the areas it could be improved, as we get more and more away from a lot of human involvement and into machine learning and just trusting that these systems could automatically help us."
"Cisco ISE is complex. The deployment and design of networks with it is so complex."
More Cisco Identity Services Engine (ISE) cons
"Sophos Network Access Control requires a lot of resources to work, which is an area for improvement. Pricing could also be improved because it's costly."
"I would like to see mobile administration capabilities in the next release so that we can administer the device from a mobile device."
"An area that could be improved is the information about licensing, which is fairly confusing at present."
"The solution could increase the integration with other platforms or other systems. This would be very useful."
"It would be beneficial to consider some improvements regarding the dashboard."
"In order to provide better management, it would be ideal with they offered better plugins for their firewall."
"It would be good if Sophos Network Access Control had better integration with other devices."
"What needs to be improved on is the fact that Sophos consumes a lot of processor resources and, once it starts scanning, the RAM utilization is very high."
More Sophos Network Access Control cons
 

Pricing and Cost Advice

"Over the years, licensing has been confusing and complicated because there are so many different licenses for each different product and each different iteration of the product."
"Pricing is not a problem for Cisco because it has a lot of features and not much competition, although it's more expensive than other products. But if I do a cost-benefit analysis, Cisco provides high quality."
"Previously, Cisco ISE had a perpetual licensing model, but now they have shifted to a subscription-based licensing system."
"There are other cheaper options available."
"The technology is good, but to use some of the other features, and capabilities, they request that we purchase the Cisco DNA Center. As a result, the bundled price is a little high."
"We are running Version 2.9 because Version 2.9 of the ISE has a persistent license — it's a one-time payment. The latest version (3.1) is only available if you do a yearly subscription."
"The price of the solution is price fair for the features you receive."
"Cisco is moving towards a subscription service, which would mean additional costs."
More Cisco Identity Services Engine (ISE) pricing and cost advice
"Sophos Network Access Control is very cheap compared to other solutions like Cisco, Barracuda, and Palo Alto."
"It is quite expensive."
"Sophos Network Access Control is costly but has a similar price range as CrowdStrike and Check Point. The product can get more market share if Sophos can play around with Sophos Network Access Control pricing and improve it."
"I rate the price of Sophos Network Access Control a five out of ten."
"It provides a moderate pricing option for all of its features and benefits."
"Sophos Network Access Control is an expensive solution."
report
See which vendors are best for you
Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.
See recommendations
892,487 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
10%
Financial Services Firm
10%
Government
7%
Computer Software Company
7%
Healthcare Company
10%
Government
8%
Manufacturing Company
7%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business45
Midsize Enterprise32
Large Enterprise91
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise3
Large Enterprise3
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
What is your experience regarding pricing and costs for Sophos Network Access Control?
The pricing of Sophos Network Access Control is good, but it is somewhat high.
See all answers
What needs improvement with Sophos Network Access Control?
In my opinion, one feature that should be added is the ability to trace emails from individuals who change their IP address or send misbehaving emails from alternative networks. If someone sends a ...
See all answers
What is your primary use case for Sophos Network Access Control?
Sophos Network Access Control serves primary use cases for both networking purposes and security purposes.
See all answers
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 25% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 15% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 7% of the time
Portnox vs Cisco Identity Services Engine (ISE) Logo
Portnox vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
More Cisco Identity Services Engine (ISE) Competitors
Aruba ClearPass vs Sophos Network Access Control Logo
Aruba ClearPass vs Sophos Network Access Control
Compared 17% of the time
Fortinet FortiNAC vs Sophos Network Access Control Logo
Fortinet FortiNAC vs Sophos Network Access Control
Compared 16% of the time
Portnox vs Sophos Network Access Control Logo
Portnox vs Sophos Network Access Control
Compared 12% of the time
Twingate vs Sophos Network Access Control Logo
Twingate vs Sophos Network Access Control
Compared 8% of the time
ExtremeCloud IQ vs Sophos Network Access Control Logo
ExtremeCloud IQ vs Sophos Network Access Control
Compared 6% of the time
More Sophos Network Access Control Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
April 2026
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
Sophos Network Access Control
April 2026
Sophos Network Access Control reportDownload Sophos Network Access Control product report
 

Also Known As

Cisco ISE
No data available
 

Overview

Cisco Identity Services Engine offers robust authentication, posture profiling, guest and secure access, and dynamic policy management. Known for its seamless integration with Cisco tools and network access control features, it ensures secure device and user authentication across networks.

Cisco Identity Services Engine is renowned for its capabilities in managing authentication, guest access, and policy management through segmentation. Its TrustSec functionality, alongside RADIUS and TACACS+ support, provides enhanced security, further augmented by its ability to operate in diverse environments. Its scalability and integration with Cisco solutions aid in maintaining network visibility and access control. Challenges include the complexity of initial deployments, somewhat cumbersome documentation, and limited integration in multi-vendor environments. While encountering issues in stability and updates, the demand for better analytics and straightforward troubleshooting alongside cost-effective licensing is notable.

What are the key features of Cisco Identity Services Engine?
  • Authentication: Secures user and device access to networks using robust authentication protocols.
  • Posture Profiling: Provides in-depth analysis of device compliance with security policies.
  • Guest Access Management: Allows controlled network access for guest users through streamlined processes.
  • Dynamic Policy Management: Enables automatic adjustment of security policies based on real-time data.
  • Segmentation via TrustSec: Enhances security levels by segmenting network traffic based on identity.
What benefits or ROI should users expect from Cisco Identity Services Engine?
  • Comprehensive Security: Ensures enforceable security policies across network access points.
  • Enhanced Integration: Facilitates seamless collaboration with existing Cisco infrastructures.
  • Improved Compliance: Helps meet industry security standards for network access and user rights.
  • Increased Visibility: Provides detailed insights into network traffic and user activities.
  • Device Management Efficiency: Streamlines the process of managing diverse devices within a single framework.

Industries implement Cisco Identity Services Engine primarily for network access control, ensuring secure authentication and segmentation in both wired and wireless environments. Supporting policies like bring-your-own-device and compliance standards, ISE manages identity-based access control, especially beneficial for entities that require detailed user rights management and integration within enterprise networks.

Cisco

Sophos Network Access Control strengthens network defense with its comprehensive management and endpoint integration. Its seamless integration with firewalls and centralized visibility offers robust security for organizations looking to secure their network environments efficiently.

Sophos Network Access Control offers centralized management and seamless firewall integration, enhancing user protection with features like application filtering and web protection. Its modular design supports easy configuration and expansion, while advanced capabilities such as Managed Detection Response improve operational efficiency. Despite its robust offerings, users have noted areas for improvement, including integration with Active Directory and the interface. Organizations also seek better AI and machine learning capabilities, optimized performance, and clearer pricing models.

What features define Sophos Network Access Control?
  • Device Quarantine: Isolate suspicious devices to prevent unauthorized access to the network.
  • Endpoint Integration: Supports enhanced threat detection and response coordination with endpoint security.
  • Application Filtering: Controls access to applications to enhance security measures.
  • Role-Based Access: Assign roles to users to ensure appropriate access levels.
  • Centralized Visibility: Provides a comprehensive view of network activity for efficient monitoring.
What benefits do users find in Sophos Network Access Control?
  • Scalability: Easily adapts to growing organizational needs.
  • Reliability: Delivers consistent performance during high-demand scenarios.
  • Policy Enforcement: Ensures strict adherence to security protocols.
  • Improved Security: Strengthens defenses with advanced threat detection capabilities.
  • Efficient Management: Simplifies administrative tasks with centralized control.

In industries like finance and healthcare, Sophos Network Access Control is crucial for managing access control and ensuring regulatory compliance. It enhances cybersecurity through VPNs, firewall performance, and AI-driven threat detection, thereby securing enterprise systems like ERP and CRM from potential threats.

Sophos
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
Rushmoor Borough Council
Buyer's Guide
Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
April 2026
Free Report: Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
Find out what your peers are saying about Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control and other solutions. Updated: April 2026.
DOWNLOAD NOW
892,487 professionals have used our research since 2012.
See our Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control report.
See our list of best Network Access Control (NAC) vendors.

We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.