Building a Cisco ISE (Identity Services Engine) home lab is a great way to get hands-on experience with network access control, AAA (authentication, authorization, and accounting), and 802.1X authentication.
Here’s a detailed list of requirements and recommended setup for a home lab:
Minimum Requirements
1. Cisco ISE Software
Cisco ISE ISO or OVA file (available from Cisco with a valid support contract or trial version)
Version: Recommend starting with ISE 3.1 or 3.4 for learning purposes
2. Hardware Requirements (Virtualized Lab)
ISE is resource-intensive, so ensure your system can handle it.
Host Machine (Laptop/Desktop or Server)
CPU: Minimum 4 cores (8 preferred)
RAM: 32 GB recommended (16 GB minimum)
Storage: SSD with at least 300 GB free (ISE VM can consume 100 GB+)
Virtualization Software
VMware Workstation Pro (Windows/Linux)
VMware Fusion (Mac)
VMware ESXi (for a more advanced lab)
Oracle VirtualBox is not officially supported but can work with tweaking
3. Cisco ISE VM Specifications
For small/lab deployment, create a VM with:
CPU: 4 vCPUs
RAM: 16 GB
HDD: 200 GB
NICs: 1 or 2 (management + data optional)
Use the “Small” node specification when deploying ISE for a lab.
4. Network Devices (Optional but recommended for full testing)
Physical or Simulated Devices
Cisco Switch/Router that supports 802.1X (e.g., Catalyst 2960 or 3750, 3850)
Cisco WLC (Wireless LAN Controller 5508) or APs (optional)
Alternatively, use GNS3 or EVE-NG with IOU/IOL images to simulate switches and routers
5. Client Devices
Windows VM (used to test 802.1X, AnyConnect NAM/dot1x/posture, etc.)
Linux VM (optional)
Can use real devices too (e.g., laptop with AnyConnect)
6. Software Tools
Cisco Secure Client (Formally known as AnyConnect 4.x)
Wireshark
Putty
Winscp
Filezilla