Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1621
Views
5
Helpful
1
Replies

Cisco Firepower 1010 NGFW user access list from AD

Go to solution
ma.romero
Level 2
Level 2

‎05-11-2020 03:23 AM - edited ‎05-11-2020 03:24 AM

Hi,

 

I have a Cisco ASA 5506x and and Cisco CDA, integrated with AD and CDA Agent, to create firewall rules for each users to access some resources allow/deny.

 

Now, I am going to renew this device for a new one Cisco Firepower 1010 NGFW and a need to migrate the same services to prevent or allow users to access some networks resources. 

Do I need Cisco ISE or can I use this device to it? Without any new devices or solutions.

 

Could you help me the solution which I need?

 

Thanks in advanced.

 

Regards.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-11-2020 04:15 AM

Either ISE or ISE-PIC (Passive Identity Collector) would be recommended.

There is a legacy Cisco User Agent (rebranded old Sourcefire User Agent) that can be used; but it is being deprecated and won't be supported for new installations of Firepower 6.6 or later.

View solution in original post

1 Reply 1

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-11-2020 04:15 AM

Either ISE or ISE-PIC (Passive Identity Collector) would be recommended.

There is a legacy Cisco User Agent (rebranded old Sourcefire User Agent) that can be used; but it is being deprecated and won't be supported for new installations of Firepower 6.6 or later.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card