https://blog.it-learn.io/tags/siem/Recent content in Siem on it-learn.io | IT, Networking & Cybersecurity BlogHugoen-usTue, 07 Apr 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-04-07-splunk-cisco-ise-syslog-integration-radius-dashboard/Tue, 07 Apr 2026 00:00:00 +0000https://blog.it-learn.io/posts/2026-04-07-splunk-cisco-ise-syslog-integration-radius-dashboard/<p>Cisco ISE is generating a continuous stream of authentication, authorization, and posture data — every 802.1X login, every guest registration, every failed auth attempt. Out of the box, that data lives in ISE&rsquo;s internal MnT database where it&rsquo;s searchable but limited. Sending it to Splunk unlocks full SIEM capabilities: long-term retention, correlation with other security data, custom dashboards, and automated alerting.</p> <p>This guide covers the complete integration from ISE syslog configuration through Splunk field extractions, SPL queries, and a live RADIUS operations dashboard.</p>