Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
810
Views
5
Helpful
2
Replies

How to integrate the Cisco FTDv with Cisco ISE for posture assessment

Aravind Raj Ravichandran
Level 1
Level 1

‎07-28-2017 06:25 AM - edited ‎03-11-2019 12:53 AM

We are using Cisco FTDv for VPN,Is it possible to achieve ISE posture assessment.

If so please provide some documentation on that.

Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-29-2017 06:55 AM

FTDv does not currently support remote access VPN so the short answer is "no".

While the Firepower 2100 series with FTD 6.2.1 does support remote access SSL VPN (Anyconnect), it does not support RADIUS CoA. So using ISE posture doesn't make much sense (although you could do some rudimentary posture assessment).

http://www.cisco.com/c/en/us/td/docs/security/firepower/621/configuration/guide/fpmc-config-guide-v621/firepower_threat_defense_remote_access_vpns.html#reference_xby_dml_wy

mohamed_safwat
Level 1
Level 1
In response to Marvin Rhoads

‎04-16-2019 07:12 AM

Hello All,

 

now version 6.3 supports remote VPN with ISE posture. (as they add the COA feature and you can configure it as it is done with asa )

 

How to configure remote VPN in FTD:

 

https://www.cisco.com/c/en/us/support/docs/network-management/remote-access/212424-anyconnect-remote-access-vpn-configurati.html

 

and configure the posture as like the ASA:

 

https://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/117693-configure-ASA-00.html

 

0 Helpful
Customers Also Viewed These Support Documents