Activity in Security
Basic ISE policy behavior
Regarding Authentication, when referencing the Internal Endpoint Database in policy, it seems to me that all profiled nodes will pass authentication since they all get populated into the Endpoint Database upon profiling? If true, the real access con...
Resolved! Move configuration from FTD/FDM (firewall) to FMC
I have a firewall that is managed via its own interface NOT the FDM software. I need to get the configuration from it to FMC to I can use FMC to manage the firewall.I've seen posts that say I have to do it all manually to the Cisco Migration tool can...
Cisco ASDM force Certificate check
Hello everyone,we are using the Cisco ASDM-IDM Launcher v1.9(9). When the Launcher connects to a system with a self-signed SSL certificate, we do not receive any warning messages. Additionally, I cannot view or verify the SSL state in the Cisco ASDM-...
Kerberos error
Hey, I'm using passiveID on cisco ise. I installed the PIC agent and the agent shows green, however, when i ran the AD diagnostic tool i get two fails:1. Kerberos check SASL connectivity to AD2. Kerberos test obtaining join point TGTI checked the DNS...
Data centers coming to Italy, Mexico, Spain and Western Canada
We are excited to announce the expansion of Cisco Secure Access with the addition of four new data center region for on-demand deployments. This enhancement is part of our ongoing commitment to provide you with the most comprehensive and accessible ...
Licensing updates with Cisco ISE 3.5
ISE 3.5 Licensing Consumption Alignment Overview: Cisco Identity Services Engine (ISE) 3.5 implemented updates to its licensing consumption logic, aligning actual feature utilization with documented intent and existing licensing guides. This initia...
Cisco Umbrella Now Supports TLS v1.3
We are happy to announce that Cisco Umbrella now has end-to-end support for TLS v1.3 from client-to-destinations in all datacenters. This release requires no action to enable TLS v1.3 support as it is automatically applied. You can find a list of...
MY WSA LOG DISK IS FULL DESPITE HAVING DELETE EVERY LOGS FILE
Hi team My WSA-web secure appliance cisco is showing disk log full. I tried to offload the logs on a remote server (via Filezila server) but after a certain time. It just stopped working. I then started moving log manually. But the amount of log I mo...
ciaco ISE 2.7 to 3.1 but it's using internal CA for authentication
hello people I have a Cisco ISE 2.7 and want to upgraded to 3.1 and then to the recommended release, but the thing is it's using its own CA for the authentication so doy you have any recommendations for this procedure? I wanted to do a full upgrade, ...
Upgrade Bundle download failed: Cisco ISE 3.2
During the Cisco ISE upgrade process, the following error appears: Current version: Cisco ISE 3.2 Patch 6 Upgrade Bundle download failed: Be sure that all your software is working stable, check your system on UI page (Administration > System > Hea...
Resolved! Is it acceptable to split an FTD Pair (Active - Standby)?
Hello, We have a pair of FTD2130 behind a pair of routers (border routers for the campus, running BGP). This is Campus A (main campus).The topology is described briefly below:The FTD pair (running v7.2.10.2) is in Active-Standby mode; it serves as Fi...
FTD RA WebVPN with VRF interface
My FTD public facing interfaces are using "front door" VRF setups and I need to enable an interface for RA VPN. From what I have found the challenge is going to be leaking my internal routes to the "front door" VRF interface. I've seen examples usi...
Resolved! ASA-5516 provide us the stable and recommended version to upgrade.
We have cisco ASA device which are mentioned below and as requested we are sharing the below serial number and provide us the stable and recommended version to upgrade. Device model ASA 5516-X Cisco Adaptive Security Appliance Software Version 9.9(2)...
Add Cisco FTD to Azure Cloud Hosted FMC
Hello Together,we installed a new FMC in Azure for some testings. Now I stuck because how can I add a physical FTD to this FMC in Azure Cloud? I tried it form Inside an office with the normal command "configure manager add ....", but it won´t work. T...
ISE EAP-TLS with Hybrid-Joined devices
Hello! I am currently working on a proof of concept for EAP (or PEAP)-TLS Wi-Fi authentication using the following elements:All devices are Windows 11 machines that are hybrid-joined. Both User & Devices certificates are successfully issued via Intun...
| User | Helpful Count |
|---|---|
| 85 | |
| 51 | |
| 27 | |
| 24 | |
| 16 |
