No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Identity Services Engine (ISE) vs Cisco Vulnerability Management (formerly Kenna.VM) comparison

Cisco Identity Services Engine (ISE) and Cisco Vulnerability Management (formerly Kenna.VM) are both solutions in the Cisco Security Portfolio category. Cisco Identity Services Engine (ISE) is ranked #4 with an average rating of 7.6, while Cisco Vulnerability Management (formerly Kenna.VM) is ranked #11. Cisco Identity Services Engine (ISE) holds a 20.7% mindshare in CSS, compared to Cisco Vulnerability Management (formerly Kenna.VM)’s 2.5% mindshare. Additionally, 87% of Cisco Identity Services Engine (ISE) users are willing to recommend the solution, compared to 100% of Cisco Vulnerability Management (formerly Kenna.VM) users who would recommend it.
Cisco Identity Services Eng...
Read 144 Cisco Identity Services Engine (ISE) reviews
  • 17,442 Views
  • 1,744 Comparison Views
87% willing to recommend
Cisco Vulnerability Managem...
Read 1 Cisco Vulnerability Management (formerly Kenna.VM) review
  • 1,236 Views
  • 136 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Identity Services Engine (ISE) and Cisco Vulnerability Management (formerly Kenna.VM) based on real PeerSpot user reviews.

Find out what your peers are saying about Cisco and others in Cisco Security Portfolio.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Security Portfolio Report (Updated: April 2026).
Buyer's Guide
Cisco Security Portfolio
April 2026
Download the complete report
Helped 893,244 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Ranking in Cisco Security Portfolio
4th
Average Rating
8.2
Reviews Sentiment
6.6
Number of Reviews
144
Ranking in other categories
Network Access Control (NAC) (2nd)
Cisco Vulnerability Managem...
Ranking in Cisco Security Portfolio
11th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
1
Ranking in other categories
Risk-Based Vulnerability Management (22nd)
 

Mindshare comparison

As of May 2026, in the Cisco Security Portfolio category, the mindshare of Cisco Identity Services Engine (ISE) is 20.7%, down from 23.6% compared to the previous year. The mindshare of Cisco Vulnerability Management (formerly Kenna.VM) is 2.5%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cisco Security Portfolio Mindshare Distribution
ProductMindshare (%)
Cisco Identity Services Engine (ISE)20.7%
Cisco Vulnerability Management (formerly Kenna.VM)2.5%
Other76.8%
Cisco Security Portfolio
 

Featured Reviews

NF
NicolasFigaro
Network and Technology Information Manager at Akkodis
Has improved authentication management and simplified visitor network access
The log capacity in Cisco Identity Services Engine (ISE) could be enhanced because today natively on the ISE can only have a look at the logs from the day before. You cannot search into the oldest logs; you have to use another tool for that. This can be blocking if you don't have any log consolidation solution. To do a search for an issue or something that happened two days ago, you cannot search directly in there. The capacity of Cisco Identity Services Engine (ISE) could be enhanced. Something between one week and one month for the log capacity would be nice.
Read full review
AshishPaliwal - PeerSpot reviewer
AshishPaliwal
Self-employed at Self-employed
Offers contextual prioritization and risk-based remediation of vulnerability
An improvement would be some sort of an integration with any GRC suite. There are a lot of GRC suites available, like Archer, MetricStream, Rsam, Protiviti, for example. So how would a solution like this work if my company has already invested thousands or maybe millions in a GRC solution? Do I still need it and how does it fit into an existing SAP environment? There could be interoperability, having more data sources, integrating Splunk, Qualys, FireEye, Rapid7, Carbon Black. I'm sure all that can be done to an extent, with a little more insight and a little more accuracy on the industry numbers and trends. I'd like the solution to offer any sort of assistance in any way with the remediation part, not just identification of vulnerability risk, and that is second.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Having access and being able to add people or change authentication yourself is nice. In the past, we've used other group authentication services, and we always had to go to them and get permissions. Having that control is key."
"It's a great tool for that, if you want to profile your network and you want to secure your network inside."
"Cisco Identity Services Engine (ISE) is very good at device administration."
"By implementing ISE, it can lighten the overhead of the Cisco Catalyst Switches by not implementing port security, Dynamic Arp Inspection, DHCP Snooping, and this will also improve the switch's performance since the ISE server takes over the duty of posturing with its Policy Service Node persona."
"The return on investment we have seen is related to time in terms of troubleshooting. The logs, such as the security logs, inform us of the issues that people have had. ISE has been very instrumental in helping isolate those issues. We've seen a lot of cost savings because we don't have to pay an IT person to waste time doing something that should be instantaneous."
"Cisco ISE's profiling and posturing features ensure that all devices are compliant with regulatory authorities."
"The live logs and live sessions for troubleshooting are the most valuable features because they provide a detailed report of any issues."
"Cisco ISE has provided more mobility for the organization while controlling access no matter how the users connect to the network."
More Cisco Identity Services Engine (ISE) pros
"The risk context of any vulnerability is a valuable feature; that is what it is used for and then data from different sources can be fed into it, and they have good dashboards, risk meters, and virtualization."
"The risk context of any vulnerability is a valuable feature."
 

Cons

"Whenever we see the authentication logs, we can't see what device we're logging into. We can see who logged in, but we can't see the IP address of the device."
"They should improve the upgrades. It's not easy to upgrade the solution."
"I don't like the fact that we can see the logs only for 24 hours. Maybe that happens because of the way we set it up."
"The area where things could be improved is education. It's complicated to deploy initially because you have to know what you're getting into."
"The licensing documentation needs to be better."
"The user interface could be more user-friendly."
"I'd like to see an easier way to upgrade to larger versions, as well as more best practices that are easier to locate on their support page."
"If I was going to improve anything, it would be the ease of migration. It's really difficult at the moment if you're looking to upgrade ISE 2.1 and you want to go to ISE 3.1 or 3.2, that whole upgrade path and, particularly, the licensing is quite a minefield to sort out."
More Cisco Identity Services Engine (ISE) cons
"An improvement would be some sort of an integration with any GRC suite."
"An improvement would be some sort of an integration with any GRC suite."
 

Pricing and Cost Advice

"The Essentials licensing is reasonable, but I would like the Premier version to be perpetual instead of a subscription."
"It is difficult to measure security breaches, but since we have not been attacked so far, it has paid for itself over the years."
"Licensing is a disaster. It's a mess and I hope they fix it soon."
"It is not that pricey."
"The price is a bit on the high side."
"I am not aware of the current price for Cisco ISE, but considering it is a Cisco product, it is likely to be quite high."
"It has a fair price. It is better than it was before."
"There is a license to use this solution and the price is reasonable."
More Cisco Identity Services Engine (ISE) pricing and cost advice
"I think the pricing is based on the number of endpoints, so it's more subscription-based."
report
See which vendors are best for you
Use our free recommendation engine to learn which Cisco Security Portfolio solutions are best for your needs.
See recommendations
893,244 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
10%
Financial Services Firm
10%
Government
7%
Computer Software Company
7%
Retailer
16%
Computer Software Company
13%
Financial Services Firm
11%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business45
Midsize Enterprise32
Large Enterprise91
No data available
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
Ask a question
Earn 20 points
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 25% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 14% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 6% of the time
Portnox vs Cisco Identity Services Engine (ISE) Logo
Portnox vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 3% of the time
More Cisco Identity Services Engine (ISE) Competitors
Vulcan Cyber vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Vulcan Cyber vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 15% of the time
Brinqa vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Brinqa vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 10% of the time
Qualys VMDR vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Qualys VMDR vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 9% of the time
Rapid7 InsightVM vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
Rapid7 InsightVM vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 8% of the time
RiskIQ Illuminate vs Cisco Vulnerability Management (formerly Kenna.VM) Logo
RiskIQ Illuminate vs Cisco Vulnerability Management (formerly Kenna.VM)
Compared 7% of the time
More Cisco Vulnerability Management (formerly Kenna.VM) Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
May 2026
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
Risk-Based Vulnerability Management
April 2026
Cisco Vulnerability Management (formerly Kenna.VM) reportDownload Cisco Vulnerability Management (formerly Kenna.VM) product report
 

Also Known As

Cisco ISE
Kenna.VM, Kenna Security, Kenna, Kenna Security Platform
 

Overview

Cisco Identity Services Engine offers robust authentication, posture profiling, guest and secure access, and dynamic policy management. Known for its seamless integration with Cisco tools and network access control features, it ensures secure device and user authentication across networks.

Cisco Identity Services Engine is renowned for its capabilities in managing authentication, guest access, and policy management through segmentation. Its TrustSec functionality, alongside RADIUS and TACACS+ support, provides enhanced security, further augmented by its ability to operate in diverse environments. Its scalability and integration with Cisco solutions aid in maintaining network visibility and access control. Challenges include the complexity of initial deployments, somewhat cumbersome documentation, and limited integration in multi-vendor environments. While encountering issues in stability and updates, the demand for better analytics and straightforward troubleshooting alongside cost-effective licensing is notable.

What are the key features of Cisco Identity Services Engine?
  • Authentication: Secures user and device access to networks using robust authentication protocols.
  • Posture Profiling: Provides in-depth analysis of device compliance with security policies.
  • Guest Access Management: Allows controlled network access for guest users through streamlined processes.
  • Dynamic Policy Management: Enables automatic adjustment of security policies based on real-time data.
  • Segmentation via TrustSec: Enhances security levels by segmenting network traffic based on identity.
What benefits or ROI should users expect from Cisco Identity Services Engine?
  • Comprehensive Security: Ensures enforceable security policies across network access points.
  • Enhanced Integration: Facilitates seamless collaboration with existing Cisco infrastructures.
  • Improved Compliance: Helps meet industry security standards for network access and user rights.
  • Increased Visibility: Provides detailed insights into network traffic and user activities.
  • Device Management Efficiency: Streamlines the process of managing diverse devices within a single framework.

Industries implement Cisco Identity Services Engine primarily for network access control, ensuring secure authentication and segmentation in both wired and wireless environments. Supporting policies like bring-your-own-device and compliance standards, ISE manages identity-based access control, especially beneficial for entities that require detailed user rights management and integration within enterprise networks.

Cisco

Cisco Vulnerability Management (formerly Kenna.VM) provides a comprehensive approach to identifying, prioritizing, and mitigating vulnerabilities in IT environments, helping organizations to manage risk effectively.

Designed with advanced analytics, Cisco Vulnerability Management supports risk-based vulnerability management, enabling IT teams to focus on the most critical threats. This platform integrates seamlessly with existing security tools, offering a centralized solution for prioritizing vulnerabilities based on risk level. By aligning security efforts with business objectives, it ensures that resources are directed towards the most impactful areas of risk reduction.

What are the key features of Cisco Vulnerability Management?
  • Risk Scoring: Assesses vulnerability severity with contextual risk metrics, aiding prioritization.
  • Integration Capabilities: Connects with existing security architecture for streamlined workflow.
  • Data-Driven Insights: Offers actionable intelligence on security posture improvements.
  • Dynamic Dashboards: Provides real-time visibility into threat landscape and mitigation efforts.
What benefits can users expect from Cisco Vulnerability Management?
  • Improved Risk Prioritization: Focuses on high-impact vulnerabilities, optimizing remediation efforts.
  • Efficient Resource Allocation: Directs IT resources to the most pressing security threats.
  • Increased Security Posture: Enhances organization-wide security through informed decision-making.

In industries like finance and healthcare, Cisco Vulnerability Management is crucial for maintaining stringent compliance standards. Its ability to integrate within complex IT ecosystems allows for flexible adaptation across sectors, ensuring that industry-specific vulnerabilities are effectively managed and mitigated.

Cisco
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
TransUnion
Buyer's Guide
Cisco Security Portfolio
April 2026
Download Free Report
Find out what your peers are saying about Cisco and others in Cisco Security Portfolio. Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.
See our list of best Cisco Security Portfolio vendors.

We monitor all Cisco Security Portfolio reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.