07-14-2016 09:17 AM - edited 03-12-2019 01:01 AM
Dear all
I have This Scenario
I can Block Facebook, youtube for all users with a policy, But when try allow traffic specific users groups of Active directory, this allow traffic for all users, same if try with a network. if remove the group this block the URL
Regard
Sebastian
Solved! Go to Solution.
07-18-2016 08:07 AM
Are you using either the Sourcefire agent or ISE for ip-user mappings?
07-14-2016 10:54 PM
Hi,
Could you verify if the config is according to the below document :
http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/200329-Configure-Active-Directory-Integration-w.html
Thanks,
Ankita
07-18-2016 08:07 AM
Are you using either the Sourcefire agent or ISE for ip-user mappings?
07-19-2016 09:58 AM
I use the SourceFire Agent, This must be installed on each user's machine?
or only Active directory Server?
07-19-2016 10:02 AM
Just needs to be on any PC that has access to the AD.
Under the table view of the connection events do you see the user name under Initiator User or does it say Unknown?
07-20-2016 06:33 AM
thanks guys, i solved this with network policy, for the moment
regards
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: