Activity in Security
FMCv License Upgrade
Hello We purchased new FMCv license to manage 10 devices and we already have FMCv license to manage 2 devices, both are attached to the same virtual account. i need to use the same FMCv i'm already using to manage 10 devices instead of 2. so, i need ...
Resolved! Upgrade FMCv device licence
Currently have a FMCv with a 2 device licence of which both licences are consumed. Customer now wants to add in a third Firepower managed device which will obviously take it over the device limit. I know that I am unable to "stack" up 2x 2 device lic...
CES classifies inbound mails as outgoing .protection.outlook.com
We are experiencing an issue with our Cisco Email Security (CES) appliance where some inbound emails are being processed as outgoing. As a result, these messages are not evaluated by the correct policies (e.g., antispam or sender authentication for i...
OpenDNS not resolving - Cisco Umbrella
In the last few weeks we have issues with openDNS which does not resolve hosts, but other DNS do.At the moment it is e.g. frank-meisler.com. OpenDNS does not resolve, but EU-DNS, Cloudflare and Google-DNS do resolve it.Paying a lot of money for this ...
PKI FlexConnect Authentication
Hi, I am looking for a guide on how to get certificate working with Cisco C1111-4P (code 17.12.5a) I am trying to get ECDSA certificates working to authenticate over the FlexVPN instead of PSK I think my first question is, is it supported and what si...
Security Intelligence feed/list change alerts
All,I've been tasked with obtaining an alert whenever a security intelligence feed or list is added/removed/modified within Security Intelligence but only have been able to find a means to alert on events discovered from SI.Might anyone know of a way...
Automatic ISE Portal Certificate Renew with Letsencrypt - how to guide
Free Certs Anyone? Have you ever wanted to get a public certificate for your ISE Portal, without the hassle of involving a commercial CA? If so, read on. This lengthy guide (maybe better as a Youtube video ... in future) will show you how I setup a...
Zscaler Client Connect and Duo Desktop
We are rolling out Zscaler Client Connect. Once we enabled SSL Inspection, applications stop recognizing that Duo Desktop is installed. The only way to get Duo Desktop to "work again" is to uninstall the Zscaler Client Connect application. Even di...
Umbrella IPSec Tunnel Issue
So we’ve been testing Umbrella. I’ve established five different IPSec tunnels in Umbrella to various networks. All had been fine, with all the tunnels active for weeks. For some unknown (to me) reason, one of the tunnels went from active state to unk...
Resolved! DAP to check if a specific antivirus is installed or not by name
I am attempting to set up a dynamic access policy on ASA to check if a specific antivirus software is installed. We use "Sophos Intercept X" for endpoint security. I have not been successful yet in configuring a policy that checks if that specific an...
Mandatory Move to New Authentication for VA and ADC (Legacy Auth EoL)
Virtual Appliance (VA)/DNS Forwarders version 3.7.0 and AD Connector version 1.14.4 introduced Enhanced Authentication. This significantly improved the security of these important components. We kindly request you upgrade to the latest versions: VA ...
Entra External Authentication Method errors: AADSTS900144
Hi all,Has anyone else noticed in the last couple of days if EAM (External Authentication Method) is configured for MFA with DUO in Entra and some end users are getting:AADSTS900144: The request body must contain the following parameter: 'externalAut...
Microsoft/Hotmail bouncing due to DKIM body hash failure
Observation: Microsoft has changed something and started rejecting valid DKIM signed emails. I've observed O365 and hotmail.com bouncing mails. To fix: Set each of your dkim signing profiles setting > Canonicalization values to "Relaxed. This makes t...
Resolved! can no longer ssh into the Primary Admin/Secondary MnT node
My ISE cluster is 3.3 patch-4. Everything is working, and I can GUI and SSH into ALL nodes with the exception of SSH into the PAN node. I was able to ssh into it yesterday but today it stopped working and I received this message:Pre-authentication ...
EAP-TLS Device Certificate for Entra Joined Devices with Intune
In my environment, we have some devices that are hybrid AD joined and some that are only Entra Joined. I'm using SCEP certificates that are being issued by a third party CA. I'm running Cisco ISE 3.3 Patch 4. I've set the SCEP profile so that there a...
| User | Helpful Count |
|---|---|
| 80 | |
| 34 | |
| 32 | |
| 28 | |
| 26 |
