Our Company purchased 70 licences, and we have sub-tenanted 50 of these to down stream ISP customer:
1. When I log in (with administrator privileges) I have the following option:> Analysis > Reports
When our customer logs in with their account (without administrator privileges) they do not have the reports option at the bottom of this menu. If we give them administrator access, then they will have visibility of the 20 devices that belong to us (and we don't want that).
How can we give the customer access to generating their own reports without providing visibility of our devices?
Note: the test user you can see above was used to test this out.
2. We want to activate email notifications on a per account basis.
If our our customer logs in with their account and selects:
Analysis > Events > Not Subscribed > Immediate (one email per event)
does this send an email each time an event is detected? Which email address will this go to? Can you please confirm that this will only occur for the computers that are loaded against his account (and not ours)? Also, can you please confirm that we will not get spammed in our worksorders queue every time that one of our customers devices goes down?
1. When you create their user account (non administrator), you can assign them privileges to certain groups, policies, outbreak control lists, custom detection list, exclusion lists, etc. You can also go in and edit these as needed under Accounts > Users. If you create separate groups, policies, objects, etc. for your various customers they will only see data for their connectors.
2. If they make a subscription for one email per event, they will get an email for each event based on the subscription settings. This is typically used if they have an automatic ticket generating system based on each email. It will go to the email address listed as the notification email (Accounts > Users > click a user) for the user creating the subscription. If they only have privileges for some connectors, they will only get emails concerning those connectors.
If you have an Admin account and are monitoring all systems, you will get alerted when they have detections if you have subscriptions set up for all policies.
For all versions of the Email Security Appliance (ESA) and Security Management Appliance (SMA), some Secure Sockets Link (SSL) certificates issued from the QuoVadis root certificate authority (CA) trust chain before 2021-03-31 cannot b...
Automation and programmability for networking and security are increasingly important topics. Every release since ISE 1.2 has included new REST API capabilities to better automate and integrate ISE with the rest of your network, appli...
The latest iteration (v2.3.4) of the Cisco Secure Firewall Migration Tool adds public beta support for S2S VPN migrations from ASA:
Policy-based (crypto map) Pre-Shared key authentication type VPN configuration to Firepower Management Center
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that manages security products like Adaptive Security Appliance (ASA), Firepower Threat Defense next-generation firewall, and Meraki devices, to name a few.
We make improvement...
This document presents the ISE data limiting best practices that can dramatically improve the system performance on ISE.
Your deployment may be impacted if the alarms tab on ISE shows High load average, high CPU or high memoy usage alarm...