Activity in Security
Resolved! VPN spanned over two WAN connections on Cisco ASA?
Hello,I have a quick question for you guys, as I'm not too sure if you can do this. Basically, we are connecting two offices together and need higher bandwidth between the sites over VPN. The main site has a leased line and the remote site has an SDS...
Unlocking Universal ZTNA: The Next Step in Cisco Zero Trust Adoption
The Unlocking Universal ZTNA webinar series covers Zero Trust principles, Cisco ISE for workplace security, and Duo for workforce security, emphasising identity, segmentation, and compliance. It contrasts VPN and ZTNA, introduces Universal ZTNA com...
ACME cert enrollment on FP1120/w ASA fails due to APIPA address
vpn(config)# crypto ca enroll acme_cert % Start certificate enrollment .. % The subject name in the certificate will be: CN=acme_cert % The fully-qualified domain name in the certificate will be: acme_cert % Include the device serial number in the...
FTDv shows "No route to host"
After deploying a new FTDv 7.x, I encountered an issue where, after configuring the Management IP settings (including Device IP, Gateway, and Mask), I couldn’t ping any devices on the network. I received a "No Route to Host" error, which was puzzling...
Resolved! "Login denied, unauthorized connection mechanism, contact your admin"
Hello, A customer reports that a newly created remote access VPN user fails to connect successfully and that the user is receiving the following error message: "Login denied, unauthorized connection mechanism, contact your administrator". The authent...
ISE Machine / User Authentication Questions
Morning World:TLDR:What value is EAP chaining providing me at this point in time? Is Machine authentication & posture assessment "good enough"? Because of our environment, machine cert fallback no longer works when a PKI certificate (User CAC Card)...
Why Shorter Certificate Lifetimes Matter for ISE Admins?
As if managing digital certificates wasn’t already complicated enough, the past few years have introduced several industry changes that make planning and tracking certificate lifecycles even more challenging. First, the industry mandated the exclusi...
Building Zero Trust Foundations with Cisco ISE and Duo
The "Building Zero Trust Foundations” session explores the core principles of Zero Trust: never trust, always verify, and continuous monitoring. We'll show you how Cisco ISE secures your workplace and how Cisco Duo protects your workforce, enabling ...
What is the view in the CCST community concerning GAN Networks & use?
What is the view in the CCST community concerning GAN Networks and its use?
Integrating On-Prem Cisco WSA S395 with Microsoft Entra ID
Hello,I would like to integrate our on-prem WSA S395 with Entra ID to manage admin logins both on the GUI and via CLI. Unfortunately, I can only find documentation online for the ESA, which refers to the menu item “System Administration > SAML”, but ...
ISE Secondary Node PSN did not take over when Primary failed
We had a situation where the Primary node became "unjoined" to the domain. This caused a widespread VPN connectivity outage because ISE couldn't verify credentials because it couldn't talk to Active Directory.Active Directory still had the machine ac...
Resolved! ISE Certificate
Greetings everyone, i just want to make sure. Is it possible if Cisco ISE work with 2 same certificates but had difference expiration date ? because this 2 certificates will expired in a short time. And so, if it possible for 2 same certificates work...
FQDN Blocked
Using DNS server of 208.67.222.222 and 208.67.220.220.387112-VEPSYS-production-nlb-7c7fd3e3d0a74d02.elb.us-gov-west-1.amazonaws.comand387112-VEPSYS-test-nlb-ebaf5cb861aecd7f.elb.us-gov-west-1.amazonaws.comAre resolving to 146.112.61.109 which is not ...
Difference between Cisco ISE Azure application vs Cisco ISE Azure VM
Hi everyone,Do you know what is the actual difference between Cisco ISE Azure application and Cisco ISE Azure VM?. Another question, when I use VMware or Hyper-V, once the ISE VM is configured you cannot increase the disk size of the VM. I was readin...
Linux DuoConnect v2.0.7 issue on Red Hat 8
Tried to update DuoConnect 2.0.4 to the latest 2.0.7 and get the following error: duoconnect: /lib64/libc.so.6: version `GLIBC_2.34' not found (required by duoconnect).
| User | Helpful Count |
|---|---|
| 63 | |
| 25 | |
| 21 | |
| 18 | |
| 16 |
