Hello, We have an FP1010 wich is used with FDM, the version is 7.0.5-72. We noticed in this week the updates has not working. In the task the status is 'Unable to connect to server' for the VDB and GeoDB update and the message 'Security Intelligence ...
Forum Posts
Hi, I have configured MFA authentication for the Cisco AnyConnect VPN, however it still requires the full email and password each time, prior to sending the MFA prompt.Is there a way to configure AnyConnect to use the credentials on the machine so th...
Resolved! Cleaning up Firepower Policies
Hi All,I have recently started a new position in which I am facing a daunting task of cleaning up of ACP. What I would like to understand is what should be my approach to do it. There seems to be a lot of stale entries in there but I have no way of k...
Hi All, Is there a way that we can set "Maxfailed logins" for FTD 2130 ? we are currently running on 6.2.3.7 and facing admin lockout issue. Like if some of our user enter password wrong even 1 time account is getting locked. To unlock we need to log...
We just took on a new client and they do not have the username or password for their ASA 5505. Unless anyone has any ideas, we need to reset to factory defaults. I have read some instructions online how to do this, but they require the password. Ho...
Anyone have this working in production?I have it working in a limited lab. Seems the only statement I needed to do was go from:no vpn-addr-assign aaaTovpn-addr-assign aaaMy Anyconnect client gets the IP assigned to them in AD. And my other clients co...
Hi All, I found the following log in the client's device two days ago, but I couldn't find any relevant information. I have checked the hardware, and everything appears to be normal according to the "showenv" command. Is this a bug? Thank you. Curren...
aaa new-modelaaa local authentication attempts max-fail 6aaa group server tacacs+ ISE_GROUPserver name TACACS_ISE_SPserver name TACACS_ISE_PDserver name TACACS_ISE_PRserver name TACACS_ISE_PUNEaaa authentication fail-message ^CCCCCCCCCCCLogin attempt...
Resolved! FirePower 1010
After trying to reset to factory settings, the device stopped booting.The ROMmon menu loads, in which I try to do a factory-reset, and after the boot command it displaysmedia drive disk0: not presentboot: cannot determine first file name on device "d...
Resolved! Make ASA debug commands persistent
Hello community, I refer to this (quite old) discussion and this answer which is not that old... But I have an ASA with software version 9.9(2)80. I would like to send debug messages via syslog even after ssh logout. The answer tells that one should ...
Hi All Apologies if question is vague - very much a Voice / Router / Switch engineer - Im just delving into security area recenlty With regards to the below vulnerabililty alert https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurity...
Hello team, I am new to Cisco ACI World and I have been asked to integrate Fortigate FWs in HA with the ACI factory. Reviewing the equipment's Datasheet, it comes with 6 QSFP ports to make connection with the ACI factory, but could you tell me, accor...
We need to be able to stipulate the criteria for what is an acceptable password. The VG450 runs IOS XE systems support this with the following command: aaa common-criteria policy PASSWORD_POLICYmin-length 15max-length 127numeric-count 1upper-case 1lo...
ASA v8.03: I've noticed that if I turn on various debug commands (eg: "debug crypto isakmp sa"), they seem to be automatically turned off when I exit my SSH session. Is there any way to keep them persistent between sessions? Cisco routers (IOS) kee...
Hi Background story: I have a customer that are deploying over 900 FTD in CDO and i have a python program that configure and deploy the configuration to each device I have a program that make a bunch of configuration changes using the Cloud delivered...
