Can a cisco switch itself be authenticated to a RADIUS server (Not NDAC)
I have a good overview of the Cisco TrustSec NDAC idea of seed and non-seed devices using CTS 802.1x authenticating the non-seed device to ISE. However that is not what I am asking about.
The question is, can you authenticate a switch itself to a (IETF, call it Windows) RADIUS server.
I have an encrypted link between two switches using CTS MANUAL. The link is up, however I would like to authenticate the access switch (a non-seed in NDAC words) to something else. Maybe the key between the switches gets out and you want to be extra sure your access switch is not a rouge one. Maybe if possible we want to authenticate by serial number or MAC or even just another user/pass combination.
[ CORE switch sat it in its really secure hut with dogs and a guard ]
[ Access sat under the stairwell next to the hoover ] <-- but I want this chap to auth itself!
Any ideas because, searching for anything switch authentication related just brings up ISE and maybe ISE is overkill for a single switch.
Hi experts,I would like any suggestions on this topology. We are is the middle of replacing our old ASA5520 with the new FirePower. Our current firewall terminate our IPsec tunnels and the GRE is terminated on the first inside router's loopback on the sec...
Hi All, A customer wants to authenticate Anyconnect VPN users from an ASA using the client installed certificate and then with AD. i.e. Is this a corporate device?Would we recommend authenticating the cert on the ASA then passing the AD check to ISE ...
Hello Team, we are getting alert in FMC stating policy deployment failed, we are running on 6.2.0 version and not sure which version is stable version to re mediate this issue, in one event i have seen restart will resolve this issue but is it perman...
Threat Hunting 101
In the latest Cisco Cybersecurity report, we explore all there is to know about threat hunting and provide a how-to guide for creating a threat hunting team.
Here are some of th...
What Is Cisco Identity Services Engine?
Cisco Identity Services Engine (ISE) is an all-in-one enterprise policy control product that enables comprehensive secure wired, wireless, and Virtual Private Networking (VPN) access.
Cisco ISE offers...