Network Security

SSO-HA -- idsClientLib-11.6.1 alternate uri setup issue

Trying to achieve SSO HA with IDS-client-lib, v11.6.1. There are two IDS Urls configured in idsclientlib.conf file as shown in attachment below idsConfig.pngIDS1 = primaryServer -- IDS2 = secondaryServer If the primary server is up, On user request f...

Cisco Firepower Administration

I have a few questions on Cisco firepower (FP) range of security/firewall devices that I could do with some guidance on as its not an area I have reviewed before for a risk assessment exercise.How regularly are security patches provided to plug vulne...

Resolved! Firepower 2K Strong Encryption Licence

Hi, Could someone confirm exactly what the FPR2K-ENC-K9 'strong encryption (3DES/AES)' licence covers on firepower boxes? Cisco doco states: -Strong Encryption (3DES/AES) license—FPR2K-ENC-K9 . Although this license is not generally required (for exa...

FPR2130 SFP interface not coming up

Is there a trick to getting one of the SFP+ interfaces to come up? I have an FPR2130 in platform mode with a 10Gb SR module plugged into the 1st SFP+ interface. from FXOS I can see the interface is an enabled admin state, but the operational state is...

Resolved! Need some help - FMC appliance CIMC CLI

Hello,I am trying to setup a FMC 1600 appliance and have been told it's connected to it's serial port via a serial console server.However, when I log into the cli, I get the following prompt: FMC cli->I cannot type anything in there (I've tried ?, he...

Anyconnect Authentication

Hello, We are currently using a Radius server to authenticate users using Anyconnect. The Radius server is tied to MS AD\Domain Users & \Domain Computers. So, any user who has an AD account can login using their AD creds. I have an assignment to crea...

Firepower Module Issue when adding it in Firepower Management Center

Dear community, I have an issue were when I try to add Cisco ASA with Firepower Module, in FMC, following is happening: - Firepower Module add Manager; adds FMC successfully. And it goes in a Pending State - When I try to add the Firepower Module in...

Resolved! FTD virtual appliance in AWS

Hi, We would like to perform various testing on the Cisco Firepower and therefore we would like to stand up a Firepower in AWS. I've created a cloudformation template and subscribed to the firepower aws subscription. I created 4 network interfaces ...

Cisco ASDM - Unable to Launch Device Manager From <IP address>

Hello, After running a few updates through ASDM on the ASA and the ASDM manager, I am now unable to access the ASA through ASDM. I get the error stated in the title after putting in my username and password. Also, when I try to access the ASA throug...

ISE-PIC 3.1 migration from User Agent

Any chance Cisco can update the video on youtube by Veronika using the latest version that now has its own CA built in?

Firepower 1010 - can you configure DHCP options with FDM?

We have a voice network connected to the inside interface of the Firepower, but we need to enable a DHCP option to point it back to Call Manager. I can't find any documentation to use options. Will we be able to do this? Thanks

FTD/ASA upgrade version to prevent Exploit 'Log4JShell'

Hello All, Have anyone known about Log4JShell exploit?This exploit got effected the devices tomcat based as far as I know. Our company has 3 FTDs and 1 ASA, and just knew that FTD 6.2.3 os is vulnerable.We are trying to upgrade the version as soon as...

Resolved! Access Control Policy Rule

HiSo hope ive been getting this right if i want to block traffic to and from the same addresses I creat a rule it would be as the below source ANY destination ANY source networks 23.33.44.55 destination networks 22.33.44.55 Source ports Any Des...

Unable to reach internet from VLAN

I'm trying to ping from the VLANs in the HQ network to PC 192.166.5.10 in the user network but it fails. I have triple checked the static routes and eigrp as well as nat on the HQ router but still can't figure out what's wrong I'm able to ping from H...

Encrypt shared key with AAA server

Hi,as the title of my posts says, our security group raised concern over this topic.The problem is that during a "show run" of the device, the tacacs+ shared key is encrypted with mode 7 which means that it is possible to get the authentication key r...

Network Security

Forum Posts

SSO-HA -- idsClientLib-11.6.1 alternate uri setup issue

Cisco Firepower Administration

Resolved! Firepower 2K Strong Encryption Licence

FPR2130 SFP interface not coming up

Resolved! Need some help - FMC appliance CIMC CLI

Anyconnect Authentication

Firepower Module Issue when adding it in Firepower Management Center

Resolved! FTD virtual appliance in AWS

Cisco ASDM - Unable to Launch Device Manager From <IP address>

ISE-PIC 3.1 migration from User Agent

Firepower 1010 - can you configure DHCP options with FDM?

FTD/ASA upgrade version to prevent Exploit 'Log4JShell'

Resolved! Access Control Policy Rule

Unable to reach internet from VLAN

Encrypt shared key with AAA server

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Relocating 4110 FTD

SIP traffic not functioning as expected following migration

How to Modify Content-Security-Policy (CSP) for FTD Remote Access VPN

IPsec session (Phase 2) hang. Cisco Secure Firewall (Firepower)

Change Syslog Port Cisco FirePower Management Center

Fire Power 1010 orange Status light blinking

ASA 5525-x with Firepower IPS + some features issue

FMC Enable SSL Decryption Impact and Creating Key and Certificate

Access List Configuration on ASA

Expired Web server certificate preventing upgrade