Try our new research platform with insights from 80,000+ expert users

Cisco Identity Services Engine (ISE) vs Sophos Network Access Control comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 5, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Ranking in Network Access Control (NAC)
1st
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
143
Ranking in other categories
Cisco Security Portfolio (1st)
Sophos Network Access Control
Ranking in Network Access Control (NAC)
8th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
21
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Network Access Control (NAC) category, the mindshare of Cisco Identity Services Engine (ISE) is 25.1%, down from 30.7% compared to the previous year. The mindshare of Sophos Network Access Control is 1.7%, up from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Access Control (NAC)
 

Featured Reviews

SunilkumarNaganuri - PeerSpot reviewer
Enhanced device administration hindered by complex deployment and security limitations
Cisco Identity Services Engine (ISE) needs to improve the profiling preauthentication. They are very poor in asset classification and should focus on improving the preauthentication profiling, especially for NAC use cases. This will give them a roadmap for software-defined access (SDA) use cases and network segmentation. Threat detection capabilities are very weak. Additionally, the product is vulnerable and has many bugs.
Vishal Deshwal - PeerSpot reviewer
Technical support excels but hardware enhancements are needed for faster processing
The best features in Sophos Network Access Control are fewer than FortiNAC and Cisco ISE, but when discussing budget and customer support, different vendors have different perspectives. Cisco is better in support, FortiNAC is better in security, and different vendors maintain different perspectives. I utilized the device quarantine feature around eight months ago. It is specifically for when any malicious or harmful file comes to the system. Through NAC, we can put it in quarantine, and if anything comes or goes from this system, it will be monitored continuously. We can define these parameters as needed. The role-based access controls feature of Sophos Network Access Control allows persons at different positions in an organization to have different types of roles. We can give them full access as an administrator, provide some network access, or give users only read-only access. This depends on the user's requirements and the position they hold within the organization, allowing us to grant roles according to their post. The integration capabilities of Sophos Network Access Control are good, as it can easily integrate with other solutions and vendors.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is the provisioning of the device so as to ensure that they are compliant with the security policy that we need to have."
"The most valuable feature of Cisco ISE is its seamless integration with the switches and the entire suite, enabling wireless access and smooth client information retrieval."
"They provide you multiple ways to achieve security, not only on-prem, but also when you have remote and guest workers. Especially post-pandemic, a lot of our customers have remote workers. So, it has been really helpful."
"At the moment, ISE seems to integrate very well with a number of other technologies."
"SGTs are valuable because they make it easy to enforce policies, instead of pushing them across all the other platforms."
"I really enjoy the live log section. Sometimes, you will have someone who is having issues connecting to the network, and then you have to ask them the dreaded question of, "Did you type a password wrong?" They will probably tell you, "No," but the live log can help sort that out. It gives us that extra ability to assist the end user and make sure that we are making them happy."
"Cisco Identity Services Engine (ISE) is very stable."
"The core point is that Cisco ISE is the same globally compared to FortiAuthenticator. Whether I deploy in China, the US, South Africa, or wherever, I'm can get all the capabilities. It allows me to directly integrate with 365, and from a communications point of view, that is a good capability."
"There is really good visibility for the appliance."
"I found all Sophos Network Access Control features valuable, but IP blocking is the most useful."
"The wifi control is fantastic and makes it very easy to administer."
"Sophos' technical support is great, very fast and responsive, and they always know how to fix the problem."
"The most valuable features of Sophos Network Access Control are the quick response times to threats and reliable security."
"The scalability of the system and the performance of the system and the solution's most valuable features."
"The user interface makes it easy to configure and use."
"Web protection, URL filtering, and application filtering are the most valuable features of Sophos Network Access Control."
 

Cons

"The opinion of my coworkers, and it's mine as well, is that the user interface could use some tender loving care. It seems counterintuitive sometimes. If you go to the logs, it's hard to figure out which one you need to look at."
"The solution configuration is complicated for setting the infrastructure. They have improved over the years but there is still a lot of room to improve. When comparing the simplicity to other vendors, such as Fortinet and Aruba they are behind."
"Cisco ISE has numerous features that are impractical, and I won't utilize them since they require payment."
"I'd like to see an easier way to upgrade to larger versions, as well as more best practices that are easier to locate on their support page."
"They should improve the documentation. There tends to be a lot of old text, or the new things aren't always up to what's been released on the code, and sometimes the documentation is inconsistent."
"I don't like the fact that we can see the logs only for 24 hours. Maybe that happens because of the way we set it up."
"The solution is not so user-friendly."
"There is room for improvement in CLI. Most things are done through the GUI, and there aren't many commands or troubleshooting options available compared to other Cisco products like switches and routers."
"Sophos Network Access Control requires a lot of resources to work, which is an area for improvement. Pricing could also be improved because it's costly."
"One area in which the product could be improved is the user interface. While functional, it can be somewhat cluttered and unintuitive, especially for new users."
"There is room for improvement in pricing."
"I would like to be able to fully customize the reports."
"The user interface, in terms of managing the product, could be better."
"Sophos Network Access Control needs improvement regarding its slow interface, loading time, and reporting."
"The solution can improve the for applying policies. They can be complex depending don't the group they are applied to."
"Continuous development in specific areas might be required."
 

Pricing and Cost Advice

"It's an expensive solution when compared to other vendors."
"If you consider money only, Cisco ISE is not a cheap solution."
"I don't know too much about the actual pricing on it. The licensing part is pretty straightforward. It's a lot more simple than some of the other Cisco licensing models. In that aspect, it's great."
"Hardware appliances are expensive...Now moving to DNA-styled licensing, we have subscription-based licensing for everything. I hope it will continue to be fair, but we will have to wait and see."
"Cybersecurity resilience has been very important to our organization and has been a big factor. We've had issues in the past, but one of the things I like about ISE is its logging features. Security wise or information wise, it really has been a powerful tool."
"ISE has always been expensive compared to other products in terms of what it does on a user level."
"The price of the solution is price fair for the features you receive."
"It is not that pricey."
"It is quite expensive."
"Sophos Network Access Control is very cheap compared to other solutions like Cisco, Barracuda, and Palo Alto."
"I rate the price of Sophos Network Access Control a five out of ten."
"Sophos Network Access Control is an expensive solution."
"It provides a moderate pricing option for all of its features and benefits."
"Sophos Network Access Control is costly but has a similar price range as CrowdStrike and Check Point. The product can get more market share if Sophos can play around with Sophos Network Access Control pricing and improve it."
report
Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.
861,803 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Educational Organization
10%
Financial Services Firm
10%
Government
9%
Computer Software Company
14%
Government
7%
Construction Company
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
What do you like most about Sophos Network Access Control?
Sophos Network Access Control has a useful interface, and I like its dashboard, which is very useful for us to check everything.
What is your experience regarding pricing and costs for Sophos Network Access Control?
I am not able to say much on the financial specifics as it pertains to the sales unit.
What needs improvement with Sophos Network Access Control?
Sophos Network Access Control could be improved by having an ASIC chip similar to FortiNAC, as this would provide better processing for big organizations. In larger organizations, we need higher sp...
 

Also Known As

Cisco ISE
No data available
 

Overview

 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
Rushmoor Borough Council
Find out what your peers are saying about Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control and other solutions. Updated: July 2025.
861,803 professionals have used our research since 2012.