1 of 1 people found this helpful
UDT doesn't have any native tie in to ISE or any other similar systems. There is a concept of a white list in the tool and you can trigger an alert to trigger when new devices are on the network. It is possible with the API to build your own automation to interface with whatever sources you want to populate the white lists, and its also possible to script up an alert action to shut down interfaces based on whatever logic you come up with, but OOTB it's not set up to do any of that automatically.
The other factor I feel the need to point out is that the default intervals for collecting data about the connected endpoints and AD user info are all at least 30 minutes, so if you envision UDT as a mechanism for kicking unauthorized users off the network then people often find those intervals unacceptably slow. You can speed up the intervals but in many cases a strict secure posture requires something much more aggressive.