Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
555
Views
0
Helpful
3
Replies

Cisco ASA-55xx NG IDFW CDA Alternative

Go to solution
Mohammed Islam
Beginner
Beginner

‎04-17-2019 08:21 AM

Hi All,

 

I am looking to implement IDFW on the network using Cisco ASA 55xx NG appliances.  I understand the Context Directory Agent is not supported on ESXi 5.5 upwards and also potential support issues with Windows 2012 too.  Looking at the download section it seems the CDA has not had any development since 2014.  My question is;

 

1. What is the alternative to CDA to provide IDFW on the ASA-55xx NG's - ISE/ISE-PICS?

2. If ISE/ISE-PICS - can someone provide me some documents around it as I cannot find anything in relation to ASA 55xx NG's

 

Thanks in advance!

Mo

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Timothy Abbott
Cisco Employee
Cisco Employee

‎04-17-2019 12:36 PM

IDFW on ASA still requires CDA.  There has been a recent patch for CDA published to support up to Windows 2016.  ISE / ISE-PIC does not currently support the sharing of identity information to ASA as it lacks the CDA RADIUS interface it requires.

 

Regards,

-Tim

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Timothy Abbott
Cisco Employee
Cisco Employee

‎04-17-2019 12:36 PM

IDFW on ASA still requires CDA.  There has been a recent patch for CDA published to support up to Windows 2016.  ISE / ISE-PIC does not currently support the sharing of identity information to ASA as it lacks the CDA RADIUS interface it requires.

 

Regards,

-Tim

0 Helpful