This document is for Cisco engineers and customers who are planning to integrate Infoblox NIOS and Cisco Identity Service Engine (ISE) 2.1 using Cisco Platform Exchange Grid (pxGrid). Infoblox NIOS version 7.3.6 software was used for both the virtual Grid Master and Network Discovery (ND) member.
This document includes:
Configuring Infoblox and the ISE pxGrid node for both Self-signed and CA-signed certificates
Configuring the Infoblox Grid Master (GM) and Infoblox Network Discovery (ND) member
Configuring DHCP and DNS services on the Infoblox GM
Configuring Infoblox ISE Ecosystem parameters and connecting to the ISE pxGrid node
Creating Infoblox DHCP and IPAM notifications for publishing Dynamic Topic information
Creating Infoblox RPZ notifications to send blocked DNS responses to the ISE pxGrid
Creating ISE EPS Quarantine Authorization policy
Populating Infoblox IPAM table with pxGrid session information
Quarantining an endpoint due to an Infoblox RPZ violation
The reader will observe and become familiar with the ISE user session information that will populate the IPAM table for more contextual information around IP events. Additionally, a RPZ (Response Policy Zone) will be created for blocking www.yahoo.com , with the results the of the endpoint being quarantined.
Hi, i get the below remote desktop connection error message when trying to access the client desktop.Anyconnect status is connected.Could you please suggest how to fix this ?My teammates use the same application and are connected to RDP.
Is there any issue w/ the following configuration:object-group network obj_myinternal_ips network-object host 172.16.23.20 network-objecthost 172.16.23.100 object network obj_myexternal network-object host 192.168.23.200 ...
Hi there, I want to migrate Cisco ASA 5505 to Cisco FTD with Firepower Device Manager (FDM). I know that you can use Cisco's Migration Tool if you are migrating to Cisco FTD with Firepower Management Center (FMC). Is there any "easy" way to migr...
Hi all, Below in the configuration in ASA0, still unable to ping to outside interface gi/2, pls help interface GigabitEthernet1/1nameif insidesecurity-level 0ip address 192.168.1.1 255.255.255.0!interface GigabitEthernet1/2nameif outsidesecurity...
Hi, I am trying to take a configuration back-up on my Primary Admin Node.I see that the backup generation is stuck on 10%, it has been this way for about 5 days now.The ise node is still operating without any issues. I have tried to stop the bac...