Dear Community, We using Cisco ISE 3.1 integration with AD servers for Auth.C and Auth.Z There have 2 deployment nodes ( Pri & Sec Node ). There have 4 AD servers ( same domain name ). On ISE we join AD DC only 2 AD servers. In case these 2 AD server...
Forum Posts
I need to migrate from CSM to FMC for Multicontexts firewalls to Multi-Instances FTD firewalls. however, the regular migration tool does not help as I have more than 12k rules on the CSM almost above 300K ACLs.it will be a big mess with ASA-FTD's cur...
Hi All I am wanting to downgrade my 1150 FTD from 7.2.5-208 to 7.0.4-55Is this a straightforward downgrade via the update section or should I be aware. Many thanks
Resolved! Cisco FTD and FMC
Dear All, I have two no of FTDs which is I need to configure in HA[A/S] in Date Center. As I dont have FMC at initial stage I am going to use to manage FTD thru FDM[native].Using this FDM I also need to configure interim RAVPN for admin users of vari...
Hi all im trying to renewal the self sign certificate of the ASA FDM by using the following commands at FDM expert mode:openssl genrsa -out privateserver.key 4096openssl req -new -key privateserver.key -out FP5516.csropenssl x509 -req -days 365 -in ...
Is the L-AC-PLS-3Y-S1 tied to just 1 serial number/device, or can it be used across multiple devices? I believe it is the latter - across multiple devices - but I just want to be certain. Secondarily, a related question, assuming we have 25-users (wh...
I have changed management interface IP address. It was using DHCP and i changed it to use static IP address.Now it is not able to connect to FMC. sftunnel.status.pl output is belowSFTUNNEL Start Time: Mon Mar 4 18:55:57 2024Both IPv4 and IPv6 connect...
Resolved! Can I Downgrade FMCv300 to FMCv2/10/25
I am migrating FMC from FMC2500 hardware to virtual, based on the migration path, i must use FMCv300, but it requires 64GB RAM what i am thinking is can I after migrate to v300, then i downgrade the RAM to 32GB since i not managing 300 sensor is that...
Resolved! no logging hide username FTD
Dears, Could you help me how to configure: no logging hide username on FTD Regards,
Resolved! ASA - which services are include "ip" ?
Hi,if i permit traffic for inside hosts to the outside with the "ip" service, what fall under this service.Example:object network obj_any nat (inside,outside) dynamic interfaceobject-group service DM_INLINE_SERVICE_1 service-object ip service-object ...
Hello, We have an FP1010 wich is used with FDM, the version is 7.0.5-72. We noticed in this week the updates has not working. In the task the status is 'Unable to connect to server' for the VDB and GeoDB update and the message 'Security Intelligence ...
Hi, I have configured MFA authentication for the Cisco AnyConnect VPN, however it still requires the full email and password each time, prior to sending the MFA prompt.Is there a way to configure AnyConnect to use the credentials on the machine so th...
Resolved! Cleaning up Firepower Policies
Hi All,I have recently started a new position in which I am facing a daunting task of cleaning up of ACP. What I would like to understand is what should be my approach to do it. There seems to be a lot of stale entries in there but I have no way of k...
Hi All, Is there a way that we can set "Maxfailed logins" for FTD 2130 ? we are currently running on 6.2.3.7 and facing admin lockout issue. Like if some of our user enter password wrong even 1 time account is getting locked. To unlock we need to log...
We just took on a new client and they do not have the username or password for their ASA 5505. Unless anyone has any ideas, we need to reset to factory defaults. I have read some instructions online how to do this, but they require the password. Ho...
