Cisco pxGrid

The Cisco pxGrid integration for Asset Manager 3.3 and later, enables you to exchange context with Cisco products to retrieve endpoint, identity group, security group, and session data from a Cisco ISE server. The session data (only) is correlated by IP across Cisco and Asset Manager, providing additional session data on the Asset Manager side. Endpoint, identity group, and security group data is the same from both Cisco and Asset Manager, only the GUI is different.

Prerequisites

To make use of this integration, your network must be running the Cisco pxGrid agent and be monitored by Asset Manager. You'll also need the following:

  1. Login credentials to your organization's Cisco ISE server
  2. Filename and password of the keystore certificate to Cisco ISE server
  3. Filename and password truststore certificate to Cisco ISE server

Ask your Cisco pxGrid server admin for this information if you do not have it already.

Configuring the Cisco pxGrid Integration

To enable the Cisco pxGrid integration from Asset Manager's GUI:

  1. Browse to Settings > Integrations.
  2. Click Other Solutions > Cisco.
  3. Establish that Asset Manager is certified to receive Cisco pxGrid notifications by completing the form and clicking Submit:
    1. Server Name - IP of Cisco pxGrid server
    2. Username - User account associated with the Cisco pxGrid server
    3. Password - User's password to the server
    4. Version - Version of Cisco pxGrid which is populated by default
    5. Keystore File - Cisco server cert
    6. Keystore Password - Cisco server password
    7. Truststore File - Cisco server cert
    8. Truststore Password - Cisco server passwor
      The message "configuration saved" will display.

Enable the Cisco pxGrid Integration

When you're ready to receive Cisco ISE data, power on the integration.

  1. Return to Settings > Integrations > Other Solutions > Cisco.
  2. Toggle the slider to "On."

Validate the Feed

Confirm that data from Cisco ISE is available.

  1. Browse to Settings > Tables.

  2. Search on Cisco.
    The "session" data as well as other tables of data from Cisco display.

View Results

Cisco pxGrid data is available in tables, dashboard widgets, and device details as follows:

  • Click Settings > Tables > Search on Cisco > View to open the table and view session fields.
  • Click Dashboards > Cisco pxGrid > to populate Session, Identify Group, Security Group, and Endpoint table data. 

pxGrid Device Details

Right-click any linked IP address and select Click Device Details > Cisco Pxgrid IP view session data for pxGrid IP. A subset of Cisco pxGrid data is also available in Search > Device Details with the following column heads.

  • IP address
  • Nasip
  • Port
  • Session state
  • Username
  • Last updated

  • Radias av pairs