Once an IPS Policy is created with FirePower Recommendations , next day if there are any updates from Cisco for "FirePower Recommendations" does not it get applied to the Policy automatically ? or we need to update the "FirePower Recommendations" with "Update Recommendations" option from the already created IPS Policy ?
Also what it does for " Recurring Rule Update Imports " at FMC >> System >> Updates Section ? Is it equivalent to .vrt file ?
Once you have Generated (and Use) Firepower Recommendations in your Intrusion Policy, the system does not change them unless and until you choose to "Update Recommendations" manually or create a scheduled task to do so for you (and deploy policy afterwards). You would do the latter via System > Tools > Scheduling. Create a new task and choose job type "Firepower Recommended Rules".
The "Recurring Rule Updates" are indeed the vrt (Vulnerability Research Team) files which comprise the Snort Rule Updates (SRU).
Hi All, A customer wants to authenticate Anyconnect VPN users from an ASA using the client installed certificate and then with AD. i.e. Is this a corporate device?Would we recommend authenticating the cert on the ASA then passing the AD check to ISE ...
Hello Team, we are getting alert in FMC stating policy deployment failed, we are running on 6.2.0 version and not sure which version is stable version to re mediate this issue, in one event i have seen restart will resolve this issue but is it perman...
Threat Hunting 101
In the latest Cisco Cybersecurity report, we explore all there is to know about threat hunting and provide a how-to guide for creating a threat hunting team.
Here are some of th...
What Is Cisco Identity Services Engine?
Cisco Identity Services Engine (ISE) is an all-in-one enterprise policy control product that enables comprehensive secure wired, wireless, and Virtual Private Networking (VPN) access.
Cisco ISE offers...
To participate in this event, please use the button to ask your questions
(This event was formerly know as Ask the Expert event)
This topic is a chance to discuss more about the best configuration and troubleshooting pr...