Skip Navigation

Managing network access and device controls using
Cisco ISE

Cisco Identity Services Engine
(ISE) administrators can perform the following actions.
Action
Description
View device data.
You can view information about devices that are associated with
BlackBerry UEM
, including the following:
  • MAC address
  • Whether the device is compliant with
    UEM
  • Whether device data is encrypted
  • Whether the device is activated (enrolled) on
    UEM
  • Whether the device is rooted or jailbroken
  • Whether the device uses a password
  • Manufacturer
  • Model
  • Serial number
  • OS version
Configure NAC policies.
Configure access policies that control whether devices can connect to work
Wi-Fi
or VPN access points. For example, you can set up an access policy that prevents devices that are not compliant with
UEM
from accessing the work network.
Lock a device.
Lock a user’s device. This feature is useful if a user’s device is temporarily misplaced.
UEM
locks the device using an IT administration command. The user must enter the device password to unlock it.
Device users can also perform this action using the My Device portal.
Delete work data.
Delete the work data only and work apps from a device, leaving the user’s personal data and apps intact. This feature is useful if a user’s device is lost or if the user is no longer an employee.
UEM
deletes work data using an IT administration command.
Device users can also perform this action using the My Device portal.
Delete all data.
Delete all data and apps from a device, restoring it to the factory default settings. This feature is useful if a user’s device is lost or stolen, or if the device is distributed to another user.
UEM
deletes all device data using an IT administration command.
Device users can also perform this action using the My Device portal.