Try our new research platform with insights from 80,000+ expert users

Cisco Identity Services Engine (ISE) vs Sophos Network Access Control comparison

Cisco and Sophos are both solutions in the Network Access Control (NAC) category. Cisco is ranked #1 with an average rating of 8.0, while Sophos is ranked #8 with an average rating of 8.2. Cisco holds a 24.2% mindshare in NAC, compared to Sophos’s 1.8% mindshare. Additionally, 87% of Cisco users are willing to recommend the solution, compared to 94% of Sophos users who would recommend it.
Cisco Identity Services Eng...
Read 143 Cisco Identity Services Engine (ISE) reviews
  • 16,354 Views
  • 10,630 Comparison Views
87% willing to recommend
Sophos Network Access Control
Read 23 Sophos Network Access Control reviews
  • 1,001 Views
  • 971 Comparison Views
94% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 5, 2024

Sophos Network Access Control and Cisco Identity Services Engine (ISE) both compete in the network security space. While Sophos is appreciated for its pricing and support, Cisco ISE is considered superior due to its advanced features and integrations that justify its higher cost.

Features: Sophos Network Access Control offers streamlined access management, endpoint visibility, and simplified deployment for smaller networks. Cisco ISE provides comprehensive network segmentation, advanced policy enforcement, and better integration options, offering a robust solution for larger, complex networks.

Room for Improvement: Sophos could enhance its integration capabilities, increase scalability, and add advanced policy features. Cisco ISE could simplify initial setup, improve ease of use, and enhance cost-effectiveness for smaller installations.

Ease of Deployment and Customer Service: Sophos is known for easy deployment suiting smaller organizations with limited integration needs, coupled with good support. Cisco ISE requires a more complex setup but is backed by extensive documentation and a robust support network, beneficial for larger enterprises.

Pricing and ROI: Sophos Network Access Control is noted for its competitive pricing and low setup costs, ensuring a quick ROI. Cisco ISE demands a higher initial investment but provides greater value over time through its extensive features, suggesting a better long-term ROI for organizations needing advanced capabilities.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control Report (Updated: September 2025).
Buyer's Guide
Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
September 2025
Download the complete report
Helped 868,759 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Identity Services Eng...
Ranking in Network Access Control (NAC)
1st
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
143
Ranking in other categories
Cisco Security Portfolio (2nd)
Sophos Network Access Control
Ranking in Network Access Control (NAC)
8th
Average Rating
8.4
Reviews Sentiment
6.1
Number of Reviews
23
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2025, in the Network Access Control (NAC) category, the mindshare of Cisco Identity Services Engine (ISE) is 24.2%, down from 29.5% compared to the previous year. The mindshare of Sophos Network Access Control is 1.8%, up from 1.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Access Control (NAC) Market Share Distribution
ProductMarket Share (%)
Cisco Identity Services Engine (ISE)24.2%
Sophos Network Access Control1.8%
Other74.0%
Network Access Control (NAC)
 

Featured Reviews

SunilkumarNaganuri - PeerSpot reviewer
Enhanced device administration hindered by complex deployment and security limitations
Cisco Identity Services Engine (ISE) needs to improve the profiling preauthentication. They are very poor in asset classification and should focus on improving the preauthentication profiling, especially for NAC use cases. This will give them a roadmap for software-defined access (SDA) use cases and network segmentation. Threat detection capabilities are very weak. Additionally, the product is vulnerable and has many bugs.
Read full review
HirenPatel2 - PeerSpot reviewer
Have faced delays in support despite strong multi-layer policy configuration
I have observed some disadvantages as we have experienced one particular problem. We were facing an issue of synchronization of the endpoint with our firewall with help on a cloud for heartbeat syncing. However, it was not syncing as per our requirement. The user has to connect our firewall with the help of VPN. We were supposed to assume a solution on a cloud, which has good synchronization on a cloud with Sophos Central. It will sync with our firewall as well with the help of Sophos Central. Endpoint and firewall synchronization is not as smooth as we are expecting from Sophos Network Access Control. We have to connect with VPN. We are expecting that if we have already installed an endpoint on our system and it is connected to the internet, then it must be synchronized on a cloud with Sophos Central. Through Sophos Central, it must connect with our firewall. If the endpoint is configured on Sophos Central and the firewall is also configured in Sophos Central, then there should be no need to connect to VPN.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Assisting a larger number of users in gaining access and guiding them through the process of getting on Cisco ISE has been seamless."
"For my use cases, the in-depth troubleshooting into why a client can't connect or why they failed, is very valuable. I can go back to someone and say, 'Hey, it's not my network. It's their certificates or user error,' or something else."
"It provides client provisions and profiling as well as guest access."
"The product is useful for device administration."
"The way the ISE works is you can get into defining. Let's say, in my case, I've got a Windows laptop and I've got an Apple product and those have unique identifiers, unique back addresses. It would say that this in my profile so I could get to those apps with either device, 24/seven. That's how granular the ISE or these NAC Solutions can get."
"Since migrating towards doing wired ports over ISE with 802.1X and MAB authentication, our organization's security risk has been better. We have been able to establish better layouts, so devices can move and we don't have to worry about where they need to go."
"We found all the features of the product to be valuable."
"Cisco Identity Services Engine (ISE) is very good at device administration."
More Cisco Identity Services Engine (ISE) pros
"Sophos Network Access Control has a useful interface, and I like its dashboard, which is very useful for us to check everything."
"The installation is very straightforward."
"The role-based access controls feature of Sophos Network Access Control allows persons at different positions in an organization to have different types of roles."
"The initial setup is very easy."
"The wifi control is fantastic and makes it very easy to administer."
"Web protection, URL filtering, and application filtering are the most valuable features of Sophos Network Access Control."
"The platform's most valuable features include robust reporting and analytics capabilities, which provide deep insights into our sales performance and customer behavior."
"The scalability of the system and the performance of the system and the solution's most valuable features."
More Sophos Network Access Control pros
 

Cons

"The initial setup process is complex since there are so many big components."
"I think some areas where ISE could be better are perhaps in the number of integrations that they offer from a virtual standpoint, as well as having a better and more comprehensive pathway for the customer to go from a physical environment to a virtual one."
"The opinion of my coworkers, and it's mine as well, is that the user interface could use some tender loving care. It seems counterintuitive sometimes. If you go to the logs, it's hard to figure out which one you need to look at."
"The interface could be more user-friendly and the ability to apply rules to MAC addresses, for example, if I wanted to allow a certain MAC address access at a particular time I cannot make this adjustment."
"It should be virtualized because many people have begun migrating to the cloud. They should offer a hybrid version."
"Third-party integration is important, as well as the continuous adaptation feature which is the AIOps. It would be helpful to include the AIOps."
"The pricing and licensing structure are not ideal for customers."
"The tracking mechanism in Cisco ISE is relatively costly, especially its vendor-specific protocol."
More Cisco Identity Services Engine (ISE) cons
"Endpoint and firewall synchronization is not as smooth as we are expecting from Sophos Network Access Control."
"There is room for improvement in pricing."
"An area that could be improved is the information about licensing, which is fairly confusing at present."
"I would like more details on the incoming connection, like what is the download speed and how it fluctuates. If Sophos can give that information, it would be really good."
"The solution could increase the integration with other platforms or other systems. This would be very useful."
"In order to provide better management, it would be ideal with they offered better plugins for their firewall."
"Users are not controlled by role-based access; it's basically device-based control. The definition of role-based control is a little vague here because on the cloud level, it regulates access rather than tasks."
"Continuous development in specific areas might be required."
More Sophos Network Access Control cons
 

Pricing and Cost Advice

"This solution requires an annual license and it is a bit expensive than competitors."
"I don't know too much about the actual pricing on it. The licensing part is pretty straightforward. It's a lot more simple than some of the other Cisco licensing models. In that aspect, it's great."
"Being fully honest, the Cisco licensing model right now is really confusing. We don't know what licenses we have where. We have Smart licensing, but the different levels are way confusing."
"For the Avast virus scan, we pay around USD $95 per machine for five years which includes all updates and technical support."
"There are other cheaper options available."
"I think licensing costs roughly $2,000 a year. ISE is more expensive than Network Access Control."
"The price of the solution is price fair for the features you receive."
"I think the price is okay."
More Cisco Identity Services Engine (ISE) pricing and cost advice
"Sophos Network Access Control is costly but has a similar price range as CrowdStrike and Check Point. The product can get more market share if Sophos can play around with Sophos Network Access Control pricing and improve it."
"Sophos Network Access Control is very cheap compared to other solutions like Cisco, Barracuda, and Palo Alto."
"It is quite expensive."
"It provides a moderate pricing option for all of its features and benefits."
"I rate the price of Sophos Network Access Control a five out of ten."
"Sophos Network Access Control is an expensive solution."
report
See which vendors are best for you
Use our free recommendation engine to learn which Network Access Control (NAC) solutions are best for your needs.
See recommendations
868,759 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
9%
Manufacturing Company
9%
Government
9%
Computer Software Company
12%
Government
9%
Manufacturing Company
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise31
Large Enterprise90
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise3
Large Enterprise3
 

Questions from the Community

Which is better - Aruba Clearpass or Cisco ISE?
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access. You can securely ...
See all answers
What are the main differences between Cisco ISE and Forescout Platform?
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, ...
See all answers
How does Cisco ISE compare with Fortinet FortiNAC?
Cisco ISE uses AI endpoint analytics to identify new devices based on their behavior. It will also notify you if someone plugs in with a device that is not allowed and will block it. The user exper...
See all answers
What do you like most about Sophos Network Access Control?
Sophos Network Access Control has a useful interface, and I like its dashboard, which is very useful for us to check everything.
See all answers
What is your experience regarding pricing and costs for Sophos Network Access Control?
I am not able to say much on the financial specifics as it pertains to the sales unit.
See all answers
What needs improvement with Sophos Network Access Control?
A point for improvement for Sophos Network Access Control would be to implement a SIEM tool functionality. For example, CrowdStrike is direct competition to Sophos Network Access Control, not even ...
See all answers
 

Comparisons

Aruba ClearPass vs Cisco Identity Services Engine (ISE) Logo
Aruba ClearPass vs Cisco Identity Services Engine (ISE)
Compared 23% of the time
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiNAC vs Cisco Identity Services Engine (ISE)
Compared 22% of the time
Forescout Platform vs Cisco Identity Services Engine (ISE) Logo
Forescout Platform vs Cisco Identity Services Engine (ISE)
Compared 9% of the time
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE) Logo
CyberArk Privileged Access Manager vs Cisco Identity Services Engine (ISE)
Compared 5% of the time
Fortinet FortiAuthenticator vs Cisco Identity Services Engine (ISE) Logo
Fortinet FortiAuthenticator vs Cisco Identity Services Engine (ISE)
Compared 4% of the time
More Cisco Identity Services Engine (ISE) Competitors
Aruba ClearPass vs Sophos Network Access Control Logo
Aruba ClearPass vs Sophos Network Access Control
Compared 35% of the time
Portnox vs Sophos Network Access Control Logo
Portnox vs Sophos Network Access Control
Compared 12% of the time
Fortinet FortiNAC vs Sophos Network Access Control Logo
Fortinet FortiNAC vs Sophos Network Access Control
Compared 12% of the time
Twingate vs Sophos Network Access Control Logo
Twingate vs Sophos Network Access Control
Compared 10% of the time
Forescout Platform vs Sophos Network Access Control Logo
Forescout Platform vs Sophos Network Access Control
Compared 8% of the time
More Sophos Network Access Control Competitors
 

Product Reports

Buyer's Guide
Cisco Identity Services Engine (ISE)
September 2025
Cisco Identity Services Engine (ISE) reportDownload Cisco Identity Services Engine (ISE) product report
Buyer's Guide
Sophos Network Access Control
September 2025
Sophos Network Access Control reportDownload Sophos Network Access Control product report
 

Also Known As

Cisco ISE
No data available
 

Overview

Cisco Identity Services Engine (ISE) offers comprehensive network access control and visibility, supporting features like 802.1X authentication, profiling, and posturing. It integrates with Microsoft and other Cisco products, facilitating robust security policies across distributed networks.

Cisco Identity Services Engine is a key player in network access control, offering centralized management and a user-friendly interface. It supports zero trust principles and provides strong authentication for wired and wireless networks. ISE's capabilities include granular security policies, enhanced device posturing, and seamless integration, bolstering security infrastructure. Users benefit from its dual authentication through EAP, simplifying access management across networks.

What are the key features of Cisco ISE?
  • 802.1X Authentication: Supports network security for authorized device access.
  • Profiling: Identifies devices for accurate policy enforcement.
  • Posturing: Evaluates device compliance for access decisions.
  • TACACS: Streamlines network device authentication and authorization.
  • Guest Access: Provides secure access to visitors.
  • Microsoft Compatibility: Seamlessly integrates with Microsoft environments.
What benefits and ROI should be considered?
  • Security Enhancement: Offers strong network security policies.
  • Operational Efficiency: Centralized management improves operational aspects.
  • Improved Compliance: Ensures adherence to industry standards.
  • Scalability: Supports growing network demands effectively.

In industries like finance, healthcare, and education, Cisco ISE is pivotal for securing wired and wireless networks, implementing BYOD policies, and managing user access. Organizations leverage ISE for effective authentication and authorization, while maintaining compliance with industry security standards.

Cisco
Sophos NAC Provides comprehensive, easy-to-deploy network access control that protects enterprise networks from the threats posed by non-compliant, compromised, or misconfigured endpoint computers. The software solution is vendor-neutral and works with existing network infrastructure and security applications. Computers are permitted or denied access to the network, based on a centrally defined, policy-driven assessment - and isolated, quarantined for remediation, automatically remediated, or sent alerts. Administrators can define and manage policies uniquely for managed and guest computers, including checking their security status and ensuring that no unwanted applications are run.
Sophos
 

Sample Customers

Aegean Motorway, BC Hydro, Beachbody, Bucks County Intermediate Unit , Cisco IT, Derby City Council, Global Banking Customer, Gobierno de Castilla-La Mancha, Houston Methodist, Linz AG, London Hydro, Ministry of Foreign Affairs, Molina Healthcare, MST Systems, New South Wales Rural Fire Service, Reykjavik University, Wildau University
Rushmoor Borough Council
Buyer's Guide
Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
September 2025
Free Report: Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control
Find out what your peers are saying about Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control and other solutions. Updated: September 2025.
DOWNLOAD NOW
868,759 professionals have used our research since 2012.
See our Cisco Identity Services Engine (ISE) vs. Sophos Network Access Control report.
See our list of best Network Access Control (NAC) vendors.

We monitor all Network Access Control (NAC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.