Activity in Security
Only allow enable, show commands, no config allowed, cant make it work
Hello all, so im running cisco ise 3.4 on my eve ng lab, im using cisco vios switch image and ios-xe router image.i am able to login as different users, no issues with full access according to whats allowed in the rule.But the issue is when i try to ...
Secure Email and Web Manager LDAP checks causing event 4625 on DC
We are using "Email and Web Manager M300V" Version: 16.0.4-010.LDAPS Port 3269 (SSL) to Microsoft Active Directory.With user, not anonymous.LDAP is working, also the manual "server test" and "test query" are ok.But the device also seems to check conn...
Log Management missing S3 option
Hola! For Log Management under Admin the only option we have is Cisco's option for US or EU. No option for our own S3 bucket. Has anyone seen this before?
ISE Guest Portal customization: Need sponsor access under login
Hi Fellow users, we have a requirement of doing Guest Wifi splash page via ISE. The requirement is for a guest to see two options on the Guest captive Portal.Option 1: is to enter your sponsor`s email address to get a longer access like for 5 days an...
Resolved! ISE Guest Portal - Mail to sponsor
Hello team. I set up a Sponsored Guest Portal on a standalone ISE node. It all works fine right now, but for some reason the email that gets sent to the sponsor for guest APPROVAL/DENIAL is the default one and not the one I modified in Portals Sett...
WSA ICAP COMMUNICATION USING P1 INTERFACE
Hello Team,I'm trying to configure an external DLP on WSA. I'm using the ICAP protocol to intercept traffic and send it to the DLP. The traffic is going through the management interface (M1) instead of the production port, even though I've set up spe...
Stealthwatch Flow Rate Calculator
Hi,I am not a true licensing guru when it comes to stealthwatch. I know up to 250 exporters that will be close to 4,500 flows per second. But is there a true calculator out there where you can plug in the number of switches/exporters to determine the...
Need to Configure Alternate SMTP Route when Default Route Fails
Hello,I need to configure an Alternate SMTP Route for All SMTP traffic outbound when the Default SMTP Route fails.I currently have multiple static SMTP routes configured for specified domains, while I use the default SMTP route for all other outbound...
D340 Duo Release Notes for May 22, 2026
Hello everyone! Here are the release notes for our most recent updates to Duo. Public release notes are published on the Customer Community every other Friday, the day after the D-release is completely rolled out to commercial deployments. You can su...
OpenDNS for Linux?
I was a long-time user of OpenDNS when I used Windows but I have migrated to the Linux Ubuntu distribution and will use other distributions on other pc's. Please let me know what I can do to obtain content filtering for these OS
Help with OPENDNS Linux IP UPDATER
Hi,I've been using OPENDNS and Linux IP UPDATER without issue until recently (AFAIK). I changed my password a few weeks ago and last week I realized the IP address wasn't changing. In troubleshooting, I realized I neglected to also change my password...
SSM On-Prem: Using CLI to create CSR and import TLS Cert for Browser
I'm currently standing up a Cisco SSM On-Prem but have hit a bit of an issue regarding creating and adding a browser TLS certificate. Our (private) Certificate Authority have very strict rules on what can and can't be in the CSR, unfortunately the S...
GET VPN
So, as per cisco's configuration guide: The GDOI protocol is protected by an ISAKMP Phase 1 exchange. The GDOI key server and the GDOI groupmember must have the same ISAKMP policy. This Phase 1 ISAKMP policy should be strong enough toprotect the GDOI...
New data centers coming to Denver and Dallas
We are excited to announce the expansion of Cisco Secure Access with the addition of two new data centers. These data centers will start accepting traffic on June 1st, 2026.New Data Center Locations:Denver, Colorado, USADallas, Texas, USAThese are co...
ASA Firewall VPN
I have a question: I’ve set up the Cisco Duo Authentication Proxy with RADIUS for MFA push on both the server and the firewall. Do I also need to create a Network Policy and Access Service on the server so the firewall can authenticate properly?
| User | Helpful Count |
|---|---|
| 44 | |
| 15 | |
| 12 | |
| 12 | |
| 8 |
