No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Identity Services Engine (ISE) vs Cisco Vulnerability Management (formerly Kenna.VM) comparison

Cisco Identity Services Engine (ISE) and Cisco Vulnerability Management (formerly Kenna.VM) are both solutions in the Cisco Security Portfolio category. Cisco Identity Services Engine (ISE) is ranked #4 with an average rating of 7.6, while Cisco Vulnerability Management (formerly Kenna.VM) is ranked #11. Cisco Identity Services Engine (ISE) holds a 20.7% mindshare in CSS, compared to Cisco Vulnerability Management (formerly Kenna.VM)’s 2.5% mindshare. Additionally, 87% of Cisco Identity Services Engine (ISE) users are willing to recommend the solution, compared to 100% of Cisco Vulnerability Management (formerly Kenna.VM) users who would recommend it.
Cisco Identity Services Eng...
Read 144 Cisco Identity Services Engine (ISE) reviews
  • 17,442 Views
  • 1,744 Comparison Views
87% willing to recommend
Cisco Vulnerability Managem...
Read 1 Cisco Vulnerability Management (formerly Kenna.VM) review
  • 1,236 Views
  • 136 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Identity Services Engine (ISE) and Cisco Vulnerability Management (formerly Kenna.VM) based on real PeerSpot user reviews.

Find out what your peers are saying about Cisco and others in Cisco Security Portfolio.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Security Portfolio Report (Updated: April 2026).
Buyer's Guide
Cisco Security Portfolio
April 2026
Download the complete report
Helped 893,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Ranking in Cisco Security Portfolio
4th
Average Rating
8.2
Reviews Sentiment
6.6
Number of Reviews
144
Ranking in other categories
Network Access Control (NAC) (2nd)
Cisco Vulnerability Managem...
Ranking in Cisco Security Portfolio
11th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
1
Ranking in other categories
Risk-Based Vulnerability Management (22nd)
 

Mindshare comparison

As of May 2026, in the Cisco Security Portfolio category, the mindshare of Cisco Identity Services Engine (ISE) is 20.7%, down from 23.6% compared to the previous year. The mindshare of Cisco Vulnerability Management (formerly Kenna.VM) is 2.5%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cisco Security Portfolio Mindshare Distribution
ProductMindshare (%)
Cisco Identity Services Engine (ISE)20.7%
Cisco Vulnerability Management (formerly Kenna.VM)2.5%
Other76.8%
Cisco Security Portfolio
 

Featured Reviews

NF
NicolasFigaro
Network and Technology Information Manager at Akkodis
Has improved authentication management and simplified visitor network access
The log capacity in Cisco Identity Services Engine (ISE) could be enhanced because today natively on the ISE can only have a look at the logs from the day before. You cannot search into the oldest logs; you have to use another tool for that. This can be blocking if you don't have any log consolidation solution. To do a search for an issue or something that happened two days ago, you cannot search directly in there. The capacity of Cisco Identity Services Engine (ISE) could be enhanced. Something between one week and one month for the log capacity would be nice.
Read full review
AshishPaliwal - PeerSpot reviewer
AshishPaliwal
Self-employed at Self-employed
Offers contextual prioritization and risk-based remediation of vulnerability
An improvement would be some sort of an integration with any GRC suite. There are a lot of GRC suites available, like Archer, MetricStream, Rsam, Protiviti, for example. So how would a solution like this work if my company has already invested thousands or maybe millions in a GRC solution? Do I still need it and how does it fit into an existing SAP environment? There could be interoperability, having more data sources, integrating Splunk, Qualys, FireEye, Rapid7, Carbon Black. I'm sure all that can be done to an extent, with a little more insight and a little more accuracy on the industry numbers and trends. I'd like the solution to offer any sort of assistance in any way with the remediation part, not just identification of vulnerability risk, and that is second.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are the NAC and the bundles that are available with Cisco ISE, such as Cisco ACS being integrated."
"The solution is integrated with other Cisco devices and can offer automation for an organization, making deployments more dynamic and providing real-time visibility."
"The core point is that Cisco ISE is the same globally compared to FortiAuthenticator, and whether I deploy in China, the US, South Africa, or wherever, I can get all the capabilities, plus it allows me to directly integrate with 365, which is a good capability from a communications point of view."
"Before, our port would be wide open, anyone could come to the network and put their laptop into the port or any device and they would be able to get the IP; now, if someone tries to connect to our network through an IU port or internet, they will not be able to access it."
"RADIUS is the best feature because it supplies authentication to our entire campus."
"Stable network administration solution that can be installed easily, and comes with fast technical support."
"Unauthenticated devices are not allowed on our network and that has been an improvement for our company."
"In terms of stability, they are rock solid."
More Cisco Identity Services Engine (ISE) pros
"The risk context of any vulnerability is a valuable feature; that is what it is used for and then data from different sources can be fed into it, and they have good dashboards, risk meters, and virtualization."
"The risk context of any vulnerability is a valuable feature."
 

Cons

"I can tell you, even as a Cisco person, ISE was considered very complex and difficult to deploy."
"The admin interface is really slow. It's horrible."
"In an upcoming release, it would be nice to have NAC already standard in the solution."
"If I was going to improve anything, it would be the ease of migration. It's really difficult at the moment if you're looking to upgrade ISE 2.1 and you want to go to ISE 3.1 or 3.2, that whole upgrade path and, particularly, the licensing is quite a minefield to sort out."
"There should be better documentation on the implementation of the solution. In my experience, there needs to be better documentation for firewall integration as well, we had some trouble early on."
"If you have someone taking care of it, it can be quite easy to manage the solution. Otherwise, if you don't look after it and take care of it day-to-day, then it will become more complex to run."
"The solution isn't as dynamic as it could be; there are some limitations, specifically around switches."
"The pricing is fair."
More Cisco Identity Services Engine (ISE) cons
"An improvement would be some sort of an integration with any GRC suite."
"An improvement would be some sort of an integration with any GRC suite."
 

Pricing and Cost Advice

"If you're not going through an agreement, it's very expensive."
"I think the price is okay."
"Its licensing could be improved. It used to be perpetual, but now they are moving away from that."
"The licensing is subscription-based and based on the user account."
"The technology is good, but to use some of the other features, and capabilities, they request that we purchase the Cisco DNA Center. As a result, the bundled price is a little high."
"The recent changes in the licensing model have caused some issues with the team."
"The price for Cisco ISE itself is very low, however, Cisco professional services are quite expensive. Subscription amount is dependent on number of users."
"The solution’s pricing is okay."
More Cisco Identity Services Engine (ISE) pricing and cost advice
"I think the pricing is based on the number of endpoints, so it's more subscription-based."
report
See which vendors are best for you
Use our free recommendation engine to learn which Cisco Security Portfolio solutions are best for your needs.
See recommendations
893,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
10%
Financial Services Firm
10%
Government
7%
Computer Software Company
7%
Retailer
16%
Computer Software Company
13%
Financial Services Firm
11%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business45
Midsize Enterprise32
Large Enterprise91
No data available
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
Ask a question
Earn 20 points
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 25% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 14% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 6% of the time
Portnox vs Cisco Identity Services Engine (ISE) Logo
Portnox vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
More Cisco Identity Services Engine (ISE) Competitors
Vulcan Cyber vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Vulcan Cyber vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 15% of the time
Brinqa vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Brinqa vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 10% of the time
Qualys VMDR vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Qualys VMDR vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 9% of the time
Rapid7 InsightVM vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Rapid7 InsightVM vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 8% of the time
RiskIQ Illuminate vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
RiskIQ Illuminate vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 7% of the time
More Cisco Vulnerability Management (formerly Kenna.VM) Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
May 2026
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
Risk-Based Vulnerability Management
April 2026
Cisco Vulnerability Management (formerly Kenna.VM) reportDownload Cisco Vulnerability Management (formerly Kenna.VM) product report
 

Also Known As

Cisco ISE
Kenna.VM, Kenna Security, Kenna, Kenna Security Platform
 

Overview

Cisco Identity Services Engine offers robust authentication, posture profiling, guest and secure access, and dynamic policy management. Known for its seamless integration with Cisco tools and network access control features, it ensures secure device and user authentication across networks.

Cisco Identity Services Engine is renowned for its capabilities in managing authentication, guest access, and policy management through segmentation. Its TrustSec functionality, alongside RADIUS and TACACS+ support, provides enhanced security, further augmented by its ability to operate in diverse environments. Its scalability and integration with Cisco solutions aid in maintaining network visibility and access control. Challenges include the complexity of initial deployments, somewhat cumbersome documentation, and limited integration in multi-vendor environments. While encountering issues in stability and updates, the demand for better analytics and straightforward troubleshooting alongside cost-effective licensing is notable.

What are the key features of Cisco Identity Services Engine?
  • Authentication: Secures user and device access to networks using robust authentication protocols.
  • Posture Profiling: Provides in-depth analysis of device compliance with security policies.
  • Guest Access Management: Allows controlled network access for guest users through streamlined processes.
  • Dynamic Policy Management: Enables automatic adjustment of security policies based on real-time data.
  • Segmentation via TrustSec: Enhances security levels by segmenting network traffic based on identity.
What benefits or ROI should users expect from Cisco Identity Services Engine?
  • Comprehensive Security: Ensures enforceable security policies across network access points.
  • Enhanced Integration: Facilitates seamless collaboration with existing Cisco infrastructures.
  • Improved Compliance: Helps meet industry security standards for network access and user rights.
  • Increased Visibility: Provides detailed insights into network traffic and user activities.
  • Device Management Efficiency: Streamlines the process of managing diverse devices within a single framework.

Industries implement Cisco Identity Services Engine primarily for network access control, ensuring secure authentication and segmentation in both wired and wireless environments. Supporting policies like bring-your-own-device and compliance standards, ISE manages identity-based access control, especially beneficial for entities that require detailed user rights management and integration within enterprise networks.

Cisco

Cisco Vulnerability Management (formerly Kenna.VM) provides a comprehensive approach to identifying, prioritizing, and mitigating vulnerabilities in IT environments, helping organizations to manage risk effectively.

Designed with advanced analytics, Cisco Vulnerability Management supports risk-based vulnerability management, enabling IT teams to focus on the most critical threats. This platform integrates seamlessly with existing security tools, offering a centralized solution for prioritizing vulnerabilities based on risk level. By aligning security efforts with business objectives, it ensures that resources are directed towards the most impactful areas of risk reduction.

What are the key features of Cisco Vulnerability Management?
  • Risk Scoring: Assesses vulnerability severity with contextual risk metrics, aiding prioritization.
  • Integration Capabilities: Connects with existing security architecture for streamlined workflow.
  • Data-Driven Insights: Offers actionable intelligence on security posture improvements.
  • Dynamic Dashboards: Provides real-time visibility into threat landscape and mitigation efforts.
What benefits can users expect from Cisco Vulnerability Management?
  • Improved Risk Prioritization: Focuses on high-impact vulnerabilities, optimizing remediation efforts.
  • Efficient Resource Allocation: Directs IT resources to the most pressing security threats.
  • Increased Security Posture: Enhances organization-wide security through informed decision-making.

In industries like finance and healthcare, Cisco Vulnerability Management is crucial for maintaining stringent compliance standards. Its ability to integrate within complex IT ecosystems allows for flexible adaptation across sectors, ensuring that industry-specific vulnerabilities are effectively managed and mitigated.

Cisco
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
TransUnion
Buyer's Guide
Cisco Security Portfolio
April 2026
Download Free Report
Find out what your peers are saying about Cisco and others in Cisco Security Portfolio. Updated: April 2026.
DOWNLOAD NOW
893,311 professionals have used our research since 2012.
See our list of best Cisco Security Portfolio vendors.

We monitor all Cisco Security Portfolio reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.