This document is for Cisco engineers and customers who are planning to integrate Infoblox NIOS and Cisco Identity Service Engine (ISE) 2.1 using Cisco Platform Exchange Grid (pxGrid). Infoblox NIOS version 7.3.6 software was used for both the virtual Grid Master and Network Discovery (ND) member.
This document includes:
Configuring Infoblox and the ISE pxGrid node for both Self-signed and CA-signed certificates
Configuring the Infoblox Grid Master (GM) and Infoblox Network Discovery (ND) member
Configuring DHCP and DNS services on the Infoblox GM
Configuring Infoblox ISE Ecosystem parameters and connecting to the ISE pxGrid node
Creating Infoblox DHCP and IPAM notifications for publishing Dynamic Topic information
Creating Infoblox RPZ notifications to send blocked DNS responses to the ISE pxGrid
Creating ISE EPS Quarantine Authorization policy
Populating Infoblox IPAM table with pxGrid session information
Quarantining an endpoint due to an Infoblox RPZ violation
The reader will observe and become familiar with the ISE user session information that will populate the IPAM table for more contextual information around IP events. Additionally, a RPZ (Response Policy Zone) will be created for blocking www.yahoo.com , with the results the of the endpoint being quarantined.
Hi! Is Security level conception still actual for Cisco 5516-x w/ Firepower Services latest versions? Right now I set it up via Firepower Management Center, I connected my device to it and see it in devices tab.Also, I read about basic ASA...
Hi everyone, We configured a guest portal to force users to change their password at first login. Just wondering if any way to send notification email with visible password to user registered email? I have noticed there was an o...
Hi @All, sometime I get a warning from SophosAV.Log: This message was treated as unscannable because scanning exceeded the configured Sophos Anti-Virus file size or number of files. Where is the config item for AV fîle size and number ...
actually we have configured IPS in inline Mode so it dont have inside ip address it has only mgmt ip address when i try to configure snmp from platform setting it not giving option for mgmt port to add in it So , Can anyon...
Hi,I am looking for how-to guide for deploying Cisco Advance Phishing Protection (APP) with Cloud Email Security (CES). I found some documents about portal and its policy configuration, monitoring/analyzing etc, however could not find any clear docu...