https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450076#M416283 <HTML><HEAD></HEAD><BODY><P>That's correct no Cisco or directly integrated 3rd party AV.</P><P></P><P>You can set up Dynamic Access Policies (DAP) in traditional remote access VPNs to check for the presence of and current signature files in a client's AV product.</P><P></P><P>For enterprises that have the Cisco ISE product with Advanced licenses you can do a posture check on wired and wireless clients and check for many things including AV and direct them to a remediation page etc.</P></BODY></HTML> Thu, 06 Feb 2014 17:17:31 GMT Marvin Rhoads 2014-02-06T17:17:31Z https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450073#M416280 <P>In the ASA 5520 CSC-10, there used to be Trend Micro antivirus running and now the replacement model is ASA- 5525-X, it's called "<SPAN style="white-space: pre; font-size: 10pt;">Application Visibility and Control"</SPAN></P><P><SPAN style="white-space: pre; font-size: 10pt;">How does this work? No more trend micro antivirus on asa? How about the management? Is it still thru ASDM?</SPAN></P> Fri, 21 Feb 2020 13:06:11 GMT https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450073#M416280 avilt 2020-02-21T13:06:11Z https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450074#M416281 <HTML><HEAD></HEAD><BODY><P>Cisco is changing the focus of network protection away from things like anti-virus and into Context-aware security model. There is no more Trend Micro Antivirus offering since the end of sale of the older 5500 series and their associated modules last year. </P><P></P><P>Thus we have the the CX module on the newer firewalls with features like AVC, Web Security Essential (WSE) and Next-Generation IPS. </P><P></P><P>All of these are managed via the Prime Security Manager (PRSM) GUI. It's a web GUI distinct from ASDM. It's starting to incorporate some of the ASDM features for managing the base firewall but for now it's main focus is the NGFW features (Next-Generation Firewall as the above features are collectively known).</P><P></P><P>PRSM can be launched from the ASA itself (known as "on-box" mode) or purchased separately and run as a VM in your VMware environment to manage multiple ASAs. We refer to that as "off-box" PRSM. In that mode, you can share objects and policy definitions across multiple ASAs.</P></BODY></HTML> Thu, 06 Feb 2014 14:39:30 GMT https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450074#M416281 Marvin Rhoads 2014-02-06T14:39:30Z https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450075#M416282 <HTML><HEAD></HEAD><BODY><P>So there is no anti-virus software?</P></BODY></HTML> Thu, 06 Feb 2014 15:56:07 GMT https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450075#M416282 avilt 2014-02-06T15:56:07Z https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450076#M416283 <HTML><HEAD></HEAD><BODY><P>That's correct no Cisco or directly integrated 3rd party AV.</P><P></P><P>You can set up Dynamic Access Policies (DAP) in traditional remote access VPNs to check for the presence of and current signature files in a client's AV product.</P><P></P><P>For enterprises that have the Cisco ISE product with Advanced licenses you can do a posture check on wired and wireless clients and check for many things including AV and direct them to a remediation page etc.</P></BODY></HTML> Thu, 06 Feb 2014 17:17:31 GMT https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450076#M416283 Marvin Rhoads 2014-02-06T17:17:31Z https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450077#M416284 <HTML><HEAD></HEAD><BODY><P>So prime security manager is required only when there is avc and wse. We dont need this when we utilize firewall with ips right?</P></BODY></HTML> Fri, 07 Feb 2014 06:29:19 GMT https://community.cisco.com/t5/network-security/asa-csc-10-replacement/m-p/2450077#M416284 avilt 2014-02-07T06:29:19Z