Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
679
Views
5
Helpful
2
Replies

Firepower user Agent

Nick Currie
Level 1
Level 1

‎03-20-2018 06:22 AM - edited ‎02-21-2020 07:32 AM

Hi there i have a quick question regarding the Firepower User Agent. I have read in the documentation that if you require to monitor more than 5 AD servers you are required to install another User Agent. However i was attending Melbourne Cisco Live recently - and in the Firepower NGFW internet Edge Deployment Scenario's Breaksec-2050 session, I was specifically told that if I want to monitor more than 5 AD servers - i will be required to us either ISE or ISE-PIC...

 

I really dont want to have the added complexity of implementing ISE to our environment to use passive identity authentication... can someone please confirm which is correct?

Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-20-2018 08:15 AM

The person either misunderstood the question or gave incorrect advice.

 

If you want to monitor more than 5 servers from a single agent then you need ISE or ISE PIC.

 

Multiple instances of Cisco User Agent (installed on separate computers) can be used as well.

abngroupit
Level 1
Level 1
In response to Marvin Rhoads

‎03-20-2018 08:31 AM

Thanks for clearing that up!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card