Firesight Management Center- Active Directory? / Physical Server
I was wondering if the Firesight Management Center can be integrated into Microsoft Active Directory? We would like to manage accounts through Active Directory to permit users to logging with certain levels of privileges (Read only/Full access/ etc.). Is this supported and easy to setup? Is there an application not or example on how to setup?
Additionally, if we wanted to install the Firesight VM onto a physical server (VMSphere), is there a recommended hardware platform to monitor up to 10 ASA's?
FMC as such will not be able to monitor ASA, but it monitors the firepower module running on the ASA. You can manage 10 devices on the vFMC without any issues. Logging capacity is restricted on the number of events that can be stored on vFMC though.
Re: Firesight Management Center- Active Directory? / Physical Server
Sure - that's quite a common use case. Your external authentication can be via LDAP (AD) or RADIUS (e.g. Cisco ISE or ACS, optionally with AD or other external identity store as the backend to those systems).
The Firepower Management Center Configuration Guide includes the necessary instructions. Here's a link to the relevant section for the current release (6.2.3):
You would like to use the ASA Firewall Umbrella Connector to enforce DNS policy with Umbrella. However you would also like to exclude certain IP addresses or subnets from using this policy. I recently had the need to do this, had a bit of tro...
Hi Everyonem Just wondering if anyone knows why I am getting an error that says "Cryptographic algorithms required by the secure gateway do not match those supported by AnyConnect. Please contact your network administrator.". See attached...
The Cisco 2020 CISO Benchmark Report provides valuable takeaways and data on the most pressing topics: the impact of vendor consolidation, cybersecurity fatigue, outsourcing, top causes of downtime, the most impactful threats, and more. The repo...
Hi, Has anyone run into the "Channel down" issue when updating the identity certificate on the Stealthwatch SMCv and SFCv. I'm doing a POC for a client and every time I go an update the identity cert the SMC says "it could save the configuration" and...
On July 16 2020, the U.K. National Cyber Security Centre and Canada’s Communication Security Establishment, in cooperation with the U.S. National Security Agency and Cybersecurity and Infrastructure Security agency, issued an advisory [...