Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
622
Views
0
Helpful
0
Replies

VPN user source IP's in ISE logs?

CSCO10662744_2
Level 1
Level 1

‎09-09-2016 08:17 AM - edited ‎03-11-2019 12:04 AM

Customer currently has ASA-5525X terminating AnyConnect VPN, and providing Internet edge firewall functions.
VPN users authenticate against ISE as RADIUS server.

They're interested in adding FirePower on top of ASA, to provide URL-filter, and anti-malware (AMP).

One of the requirements is to provide URL-filter based on AD user & group membership.

Do the ISE logs contain the username-to-IP mapping for VPN users, so that FirePower can get the mapping from ISE?

Specifically, we're hoping the ISE logs would contain the internal IP's from the local VPN pool on the ASA, and not public IP's from remote users' ISP.

TIA

Kevin

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents