Activity in Security
change of primary email address is not working
I would like to change my primary email address.I did this at https://dashboard.opendns.com/myaccount/email and clicked on the confirmation link that was sent to me by email. I was then taken to the account overview page, but the email address is sti...
ASA VPN behind Fortigate
Hi,I have two scenario seeking advise:1) to take advantage of Fortigate Geo-Blocking and integrate it with ASA SSL-VPN, I setup ASA behind fortigate like this in a LAB and it works fine. let me know if there is any consideration: - ASA Port 4 as Outs...
FlexVPN/Ikev2/EAP secure connection between Iphone/Ipad and a Cisco router
IntroductionDesign considerationsRouter configurationRadius configSmartphone configInstall Root CALaunch app and select "Add VPN connection"Enter router destination addressSelect "Advanced" and configure the ikev2 parametersDefine the ikev2 identity ...
Cisco Umbrella mystery installation
Cisco Umbrella has mysteriously installed itself on my home broadband network. I want to know how this has happened and how to get rid of it.I've done some research, and the only thing I can think is that this was installed as a roaming client by my ...
User and Machine Authentication
Hello Am having troubles getting my WIFI to work with machine authentication and user authentication i keept trying to reauthenticate every time im not really sure why it doing it at the machine authentication part, but it get that correct. this is w...
Secure Access Clients Recieve EER_SSL_Protocol_Error
Hello,We are receiving reports of some VPN Client users, who will get this error message (screen shot attached). We're not utilizing SSL VPN. We're utilizing the Cisco Secure Client version 5.1.8 This problem seems to occur when our users are in publ...
Resolved! ISE 3.3 system certificate update
ISE 3.3 system certificate updateWe use public cert and what is recommended way to renewal cert has they are part of the deployment pri and secondary they are not part of the PAN failoverdoes it matter if i gave it two of the common name of both ISE ...
IKEv2 Remote Access VPN Failure to Connect
Good evening,I previously had an IKEv2 Remote Access VPN tunnel working properly on an ASA 5515-X but apparently made some changes that have broken this functionality, so I appreciate any assistance that can be offered in restoring functionality. I h...
WSA Upgrade from 14.5.0-537 to 15.2.3-007 – What to check before
Hi Cisco Community, I'm planning to upgrade our **Cisco Web Security Appliance (WSA)** from **AsyncOS 14.5.0-537** to **15.2.3-007**. Should anyone tell me the best practices and what to check before the upgrade? Looking for advice on:1. Any **criti...
Resolved! Get-Content fails to recognize DUO installer as a valid executable
My PS7 script uses: $firstBytes = Get-Content $installerPath -Encoding ASCII -TotalCount 4 $magicHeader = $firstBytes -join ' 'if ($magicHeader -ne '77 90 144 0') {Write-Host "failed"; exit}I have also tried ASCII, UTF8 and Default for encodings, but...
Trying to overcome OpenVPN Reneg-Seconds
I've installed a Unifi Dream machine and used Duo as it's Radius, I use LDAP for primary auth and Duo Push as MFA. All is well...For an hour then OpenVPN forces it's hourly renegotiation and another push is sent out which must be approved. Not keen o...
ASA5545 upgrade to FTD
Hi AllWe are looking at upgrading our ASA5545 to an FTD, what is the replacement model for this? I was thinking the 1150 model.When I look at the specs it says maximum vpn peers 800, does this mean anyconnect sessions and site to site ipsec etc?The 5...
Resolved! Can FMC running in vsphere be migrated to AWS?
I plan to migrate a FMC running in vsphere to AWS. Initially I plan to: 1. Build the FMC in AWS as brand new; 2. Backup the existing FMC (running v7 already) and then restore the backup in AWS FMC; 3. Login to AWS FMC serial console to change the MGM...
Released emails from spam quarantine are not being delivered
Hello fellow community members,During a packet capture on C395 gateway appliance I detected that, released emails from SPAM Quarantine on M395 manager appliance, are not actually being released. Released emails from Policy Quarantine are being releas...
Roaming user redirection rules update: Germany and Ireland
Anycast routing is the default mechanism for Secure Web Gateway roaming user data center selection, but sometimes it does not result in an optimal data center selection, especially if a user is near a country border. SWG Roaming user data center se...
| User | Helpful Count |
|---|---|
| 82 | |
| 41 | |
| 31 | |
| 29 | |
| 29 |
