05-11-2020 03:23 AM - edited 05-11-2020 03:24 AM
Hi,
I have a Cisco ASA 5506x and and Cisco CDA, integrated with AD and CDA Agent, to create firewall rules for each users to access some resources allow/deny.
Now, I am going to renew this device for a new one Cisco Firepower 1010 NGFW and a need to migrate the same services to prevent or allow users to access some networks resources.
Do I need Cisco ISE or can I use this device to it? Without any new devices or solutions.
Could you help me the solution which I need?
Thanks in advanced.
Regards.
Solved! Go to Solution.
05-11-2020 04:15 AM
Either ISE or ISE-PIC (Passive Identity Collector) would be recommended.
There is a legacy Cisco User Agent (rebranded old Sourcefire User Agent) that can be used; but it is being deprecated and won't be supported for new installations of Firepower 6.6 or later.
05-11-2020 04:15 AM
Either ISE or ISE-PIC (Passive Identity Collector) would be recommended.
There is a legacy Cisco User Agent (rebranded old Sourcefire User Agent) that can be used; but it is being deprecated and won't be supported for new installations of Firepower 6.6 or later.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide