Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
741
Views
0
Helpful
1
Replies

Firepower wired 802.1x

reckaltonan
Level 1
Level 1

‎05-26-2025 07:51 AM

Hi Everyone, i am trying to figure out if i can protect the LAN interfaces of a Firepower Firewall via 802.1x (in combination with ISE).

Unfortunately, i haven‘t found reliable information on the internet or in Ciscos documentation.… hope some one with expierence can help.

Thank you.

https://9apps.ooo/
Labels:
0 Helpful
1 Reply 1

Aref Alsouqi
VIP
VIP

‎05-27-2025 02:38 AM - edited ‎05-27-2025 02:38 AM

Do you mean authenticate the firewall ports before passing any traffic? if that is the case why would you want to do that? the firewalls have their own security features to protect themselves and they are devices that you connect to specific switch ports with no dynamic movement or attributes. Dot1x needs a supplicant to go through the authentication process which doesn't exist on the FTDs. Although in theory you would be able to get away with MAB but again I don't believe that would be recommended nor adding any security to your firewalls.

If the idea behind your question is to restrict the unauthorized accesses to your firewalls then you can set some restrictions on the firewalls management interfaces including the allowed IP addresses as well as the authorized users and if you don't have any management services running on the data interfaces no one could leverage those interfaces for management accesses.

0 Helpful
Customers Also Viewed These Support Documents