October 19, 2018

KT Labs EP5 :: ACS to ISE Migration

(Last Updated On: 10th September 2018)

In the video, I show you how you can leverage the ACS to ISE migration tool to migrate objects from ACS to ISE. As mentioned in the video, a few prerequisites need to be met, these are listed below.

Prerequisites

  • Direct connectivity to both the ACS and ISE platforms
  • The correct version of ACS (see here for more information)
  • Certificates from both platforms added to the migration tool
  • ACS and ISE Migration interfaces enabled via the CLI
    • ACS CLI Command: acs config-web-interface migration enable
    • ISE CLI Command: application configure ise and select option 11 and enter Y
  • Windows-based machine to host the migration tool
  • Windows-based machine with Jave 7.1 or above
  • FQDN’s for each platform

Added notes 10/09/2018

More recently it was observed that not all users would successfully export using the migration tool. No errors were output while using the ACS to ISE migration tool meaning internal users were unknowingly missed as part of the migration. It was found that in order to rectify this problem a patch had to be applied to the Access Control Server. In my case, I was running ACS 5.5 with no patch until patch 11 was applied.

Previous «
Next »

Security Solutions Consulting Engineer @ Cisco - CCNA R&S/CCNA Security, CCDA & CCNP R&S - Currently working on CCIE Security. Sharing my knowledge and passion for technology. All views are mine and NOT of my company.

Leave a Reply

Subscribe to SYNACK via Email

%d bloggers like this: