{"id":33615,"date":"2019-07-23T15:00:58","date_gmt":"2019-07-23T21:00:58","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=33615"},"modified":"2024-01-29T16:36:55","modified_gmt":"2024-01-29T21:36:55","slug":"freeradius-vs-cisco-ise","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/freeradius-vs-cisco-ise","title":{"rendered":"FreeRADIUS vs Cisco ISE"},"content":{"rendered":"\n

Many IT admins and DevOps engineers considering how to manage their access to networking infrastructure will compare FreeRADIUS vs Cisco ISE. While both solutions are technically RADIUS servers, each making use of the RADIUS protocol<\/a> to connect user identities to networking infrastructure, they also serve very different purposes. <\/span><\/p>\n\n\n\n

This blog will help to illuminate the differences between FreeRADIUS and Cisco ISE while providing the basis for if the comparison is an apt one or not. <\/span><\/p>\n\n\n\n

Cisco ISE<\/span><\/h2>\n\n\n\n

In short, Cisco\u2019s highly expensive Identity Services Engine (ISE) is effectively more of a policy engine that decides who should access the network through a variety of data points, and then executing on those through tight integration with Cisco networking gear. A portion of that process involves the on-board RADIUS server to pass authentications from systems and devices to a directory service.<\/span><\/p>\n\n\n\n

Once users are on a Cisco ISE-controlled network, the biggest benefit to IT admins is network visibility. At a moment\u2019s notice, an IT admin or DevOps engineer can see who is connected to the network, what sort of device they\u2019re using (personal or work-issued), where they\u2019re located, if the connection is wired or wireless<\/a><\/strong>, the types of applications that they are using and much more. All of this info is presented in a graphical user interface so admins just point and click to find out what is happening on their networks. <\/span><\/p>\n\n\n\n

The major drawback to Cisco ISE has to do with price. Aside from cost, when you utilize the Cisco ISE platform you\u2019re going to need to utilize a range of Cisco-based products, which could ultimately lead to vendor tie-in.  <\/span><\/p>\n\n\n\n

FreeRADIUS <\/span><\/h2>\n\n\n\n

On the other hand, FreeRADIUS is an open source solution that is perhaps the most robust RADIUS server on the planet. Available for free, the solution only requires your time and technical expertise to implement. The focus of FreeRADIUS is not to decide access as a policy engine, but rather it is able to take inputs from other solutions, mainly an identity provider (IdP), to execute on access control. <\/span><\/p>\n\n\n\n

FreeRADIUS will not provide the same level of network visibility as Cisco ISE, but it is so flexible that you can utilize a wide range of hardware and Linux<\/a>-based operating systems to run it on including Ubuntu, Red Hat, and Debian. That means you don\u2019t need to purchase specialized hardware, and FreeRADIUS works with many different infrastructure providers outside of just Cisco. As such, flexibility is generally a trademark of open source software. <\/span><\/p>\n\n\n\n

Some drawbacks of FreeRADIUS include the fact that it is often run through a command line, which may be a challenge for some IT admins. Further, while FreeRADIUS is open source and therefore may be free to use, there are costs associated with actually standing the server up. Add this to the overhead required for configuring it to work in your environment, and the costs can add up. <\/span><\/p>\n\n\n\n

FreeRADIUS vs Cisco ISE Conclusion<\/span><\/h2>\n\n\n\n

In general, the comparison of FreeRADIUS vs Cisco ISE isn\u2019t really an apt one because rarely will IT admins be forced to choose one over the other. However, both solutions rely on a core identity provider<\/a> for input on whether a user should gain access, and in that case, the JumpCloud Directory Platform<\/a> can serve as a cloud-based solution to that problem. <\/span><\/p>\n\n\n\n

JumpCloud provides a platform-neutral directory that can immediately slot into your environment and provide a painless way to provide core user identities to either your FreeRADIUS or Cisco ISE implementation. Plus, because it\u2019s in the cloud and delivered \u201cas-a-Service\u201d you pay for only what you need\u2014no more and no less. <\/span><\/p>\n\n\n\n

And if you\u2019re looking to go all cloud\u2014with no on-prem hardware to set up, configure, and maintain\u2014JumpCloud offers Cloud RADIUS to help both secure your network and propel you into a cloud-based future. Plus, it\u2019s already backended with a directory, so you can get to work right away adding users to your directory and connecting those identities to your networking gear via RADIUS. <\/span><\/p>\n\n\n\n

Try JumpCloud Cloud RADIUS<\/h2>\n\n\n\n

Test out JumpCloud’s Cloud RADIUS feature today, along with every other feature contained within the platform –\u00a0sign up today<\/a>\u00a0for a JumpCloud account. If you\u2019d like additional information, feel free to consult JumpCloud\u2019s\u00a0Knowledge Base<\/a>, or\u00a0drop us a line<\/a>.<\/p>\n\n\n\n

\n