12-14-2020 01:33 AM
Hello,
We are at very initial of planning to integration of Cisco ASA under Cisco Defense Orchestrator - CDO.
I am not able to find much document or section, which explains about my question and looking forward some guidance from the experts here.
Our Cisco ASAs are enabled with TACACS through ISE based AD Authentication, now we are planning to on-board this ASAs into CDO tool. My question, how does CDO get login to this ASAs ? do we need to create a separate AD Account and input into CDO for devices login ?
12-14-2020 02:43 AM
When it comes to onboarding the ASA in CDO, it requires valid credentials. I'd create a dedicated account in AD for CDO and use these when onboarding.
HTH
12-14-2020 10:03 AM
I agree with @Rob Ingram - use a service account with a non-expiring strong password. Create an SOP to change it periodically.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide