The Cisco pxGrid integration for Lumeta 3.3 and later, enables you to exchange context with Cisco products to retrieve endpoint, identity group, security group, and session data from a Cisco ISE server. The session data (only) is correlated by IP across Cisco and Lumeta, providing additional session data on the Lumeta side. Endpoint, identity group, and security group data is the same from both Cisco and Lumeta, only the GUI is different.

Prerequisites

To make use of this integration, your network must be running the Cisco pxGrid agent and be monitored by Lumeta. You'll also need the following:

  1. Login credentials to your organization's Cisco ISE server
  2. Filename and password of the keystore certificate to Cisco ISE server
  3. Filename and password truststore certificate to Cisco ISE server

Ask your Cisco pxGrid server admin for this information if you do not have it already.

Configuring the Cisco pxGrid Integration

To enable the Cisco pxGrid integration from Lumeta's GUI:

  1. Browse to Settings > Integrations.
  2. Click Other Solutions > Cisco.
  3. Establish that Lumeta is certified to receive Cisco pxGrid notifications by completing the form and clicking Submit:
    1. Server Name - IP of Cisco pxGrid server
    2. Username - User account associated with the Cisco pxGrid server
    3. Password - User's password to the server
    4. Version - Version of Cisco pxGrid which is populated by default
    5. Keystore File - Cisco server cert
    6. Keystore Password - Cisco server password
    7. Truststore File - Cisco server cert
    8. Truststore Password - Cisco server passwor

      The message "configuration saved" will display.

Enable the Cisco pxGrid Integration

When you're ready to receive Cisco ISE data, power on the integration.

  1. Return to Settings > Integrations > Other Solutions > Cisco.
  2. Toggle the slider to "On."

Validate the Feed

Confirm that data from Cisco ISE is available.

  1. Browse to Settings > Tables.

  2. Search on Cisco.

    The "session" data as well as other tables of data from Cisco display.

View Results

Cisco pxGrid data is available in tables, dashboard widgets, and device details as follows:

pxGrid Device Details

Right-click any linked IP address and select Click Device Details > Cisco Pxgrid IP view session data for pxGrid IP. A subset of Cisco pxGrid data is also available in Search > Device details with the following column heads. More information and an example will be added here; pxGrid Device Details cannot be displayed in our test environment at this time. 

  1. IP address
  2. Nasip
  3. Port
  4. Session state
  5. Username
  6. Last updated
  7. Radias av pairs

    Lumeta 3.3.3 and laterBefore Lumeta 3.3.3