Cisco Access Control Server (ACS), Identity Services Engine (ISE), Zero Trust Workplace
33211 PostsEngage with peers and experts on network security topics such as Secure Firewall Threat Defense, Ada...
72029 PostsGet started with or get better at administering and using Duo by interacting with peers and experts!
3489 PostsAsk questions not covered by support articles and documentation.
3478 PostsHello We purchased new FMCv license to manage 10 devices and we already have FMCv license to manage 2 devices, both are attached to the same virtual account. i need to use the same FMCv i'm already using to manage 10 devices instead of 2. so, i need ...
Currently have a FMCv with a 2 device licence of which both licences are consumed. Customer now wants to add in a third Firepower managed device which will obviously take it over the device limit. I know that I am unable to "stack" up 2x 2 device lic...
We are experiencing an issue with our Cisco Email Security (CES) appliance where some inbound emails are being processed as outgoing. As a result, these messages are not evaluated by the correct policies (e.g., antispam or sender authentication for i...
In the last few weeks we have issues with openDNS which does not resolve hosts, but other DNS do.At the moment it is e.g. frank-meisler.com. OpenDNS does not resolve, but EU-DNS, Cloudflare and Google-DNS do resolve it.Paying a lot of money for this ...
Hi, I am looking for a guide on how to get certificate working with Cisco C1111-4P (code 17.12.5a) I am trying to get ECDSA certificates working to authenticate over the FlexVPN instead of PSK I think my first question is, is it supported and what si...
All,I've been tasked with obtaining an alert whenever a security intelligence feed or list is added/removed/modified within Security Intelligence but only have been able to find a means to alert on events discovered from SI.Might anyone know of a way...
Free Certs Anyone? Have you ever wanted to get a public certificate for your ISE Portal, without the hassle of involving a commercial CA? If so, read on. This lengthy guide (maybe better as a Youtube video ... in future) will show you how I setup a...
We are rolling out Zscaler Client Connect. Once we enabled SSL Inspection, applications stop recognizing that Duo Desktop is installed. The only way to get Duo Desktop to "work again" is to uninstall the Zscaler Client Connect application. Even di...
So we’ve been testing Umbrella. I’ve established five different IPSec tunnels in Umbrella to various networks. All had been fine, with all the tunnels active for weeks. For some unknown (to me) reason, one of the tunnels went from active state to unk...
I am attempting to set up a dynamic access policy on ASA to check if a specific antivirus software is installed. We use "Sophos Intercept X" for endpoint security. I have not been successful yet in configuring a policy that checks if that specific an...
Virtual Appliance (VA)/DNS Forwarders version 3.7.0 and AD Connector version 1.14.4 introduced Enhanced Authentication. This significantly improved the security of these important components. We kindly request you upgrade to the latest versions: VA ...
Hi all,Has anyone else noticed in the last couple of days if EAM (External Authentication Method) is configured for MFA with DUO in Entra and some end users are getting:AADSTS900144: The request body must contain the following parameter: 'externalAut...
Observation: Microsoft has changed something and started rejecting valid DKIM signed emails. I've observed O365 and hotmail.com bouncing mails. To fix: Set each of your dkim signing profiles setting > Canonicalization values to "Relaxed. This makes t...
My ISE cluster is 3.3 patch-4. Everything is working, and I can GUI and SSH into ALL nodes with the exception of SSH into the PAN node. I was able to ssh into it yesterday but today it stopped working and I received this message:Pre-authentication ...
In my environment, we have some devices that are hybrid AD joined and some that are only Entra Joined. I'm using SCEP certificates that are being issued by a third party CA. I'm running Cisco ISE 3.3 Patch 4. I've set the SCEP profile so that there a...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
User | Helpful Count |
---|---|
80 | |
34 | |
32 | |
28 | |
26 |