Activity in Security
Cisco ISE 3.5 Entra ID Authorization Not working
If Entra ID External Group is part of Authorization Rule, 802.1x ( EAP-TLS ) is not working with Device Cert. But if I take out External Device Group from Condition , 802.1x - EAP-TLS is working. I have successfully Integrated Entra ID Integration ...
Cisco Secure Access for Government Release Notes 10/2025
Secure Access for Government Release Notes (10/2025) Secure Access for Government is a FedRAMP Moderate [IL2] authorized instance of Cisco Secure Access, purpose-built to meet public sector requirements and compliance needs. Secure Access for Governm...
FlexVPN with Anyconnect key-id change
hello and good afternoon to all. have a question regarding FlexVPN using Anyconnect. everything is working great but, i need to make different groups and since anyconnect key-id is *$AnyConnectClient$*by default i have seen information regarding that...
How to add a subnet coming through a VPN to an ACP
Hi to all,my topology is like the following:subnet A --> R1 <-----Internet--> Edge Router <----> FTD<---> Various VLANs in the inside ZoneBetween R1 and FTD runs an IPSec VPN. Internet connectivity is provided by the Edge router. What is not clear to...
Regarding Xlate info in ASA
generally , in one static 1 to 1 NAT the output of show xlate shows as below right .ham-vpn-fw/ham-vpn-fw# sh xlate | in 172.20.164.139 NAT from outside:10.90.0.18 to cbtsmgmt:172.20.164.139 ham-vpn-fw/ham-vpn-fw#but in one of my case showing as bel...
FTD Dynamic L2L VPNs
Hello, We want to have a FTD (with static public IP) and several Cisco routers (with dynamic IP) connected with IPSEC IKEv2 L2L VPNs with different PSKs for each VPN. We dont find on the FTD how to check the receiving ID that the router would send t...
Cisco Anyconnect & ISE behavior with Machine comes back from sleep mode
I have an ISE setup (Eap-chaining & posturing ) for wired using Cisco Anyconnect 4.1 . I'm facing two issues with anyconnect , and hopefully some one can help me out .. 1- When machine moves from sleep mode to live , ISE is not allowing users full ...
FTD Pre Login Banner
Does anyone know how to configure a Pre Logon Banner on a FTD non FMC managed running code 7.x?I can't see that it is at all possible. The CLI won't let you write any change out regarding a banner. The API explorer has no option and the GUI menu also...
802.1x not working - switch port shows No response from radius-server
I am trying to 802.1x for Wired Access. While I try to connect a Laptop it shows Auth failed and from the connected switch I see below error. From NAS to ISE IP port 1812.1813 on udp is allowed. any of you faced similar issue ? any leads will be m...
Cisco ISE 3.5 Entra ID Authorization Problem
I have a PoC in my customer for Cisco ISE integration with Entra ID and currently I test it first on my lab.My customer only has Entra ID for the IDP and no on-prem AD.I use EAP-TLS and using ISE Certificate Provisioning Portal to generate endpoint c...
ISE API cost
Someone said the ISE API costs money, but I was wondering if someone could break down how the cost works.Is it just pxGrid and OpenAPI that aren’t charged?
Cisco ISE - Intune Integration
I'm try to integrate Cisco ISE to Intune with following this article, and i got this error. Anyone know why? How to: Integrate Cisco ISE MDM with Microsoft Intune - Cisco Community
ISE DNS
I have ISE deployment on prem, but we continue to move Active Directory and other servers to AWS. It looks like when on prem AD / DNS servers are offline, we start to see some ISE authentication issues. Do we need to add AWS DNS servers to ISE? Wh...
cdFMC, which FTD interface for management?
I'm new to using cdFMC and planning to add two FTDs configured for high availability. What are the recommended interfaces for management? Should I use a data interface for management purposes on both firewalls (two public IP addresses)? Additionally,...
ISE VM license for AWS
I have ISE deployment on prem using physical servers. Would it be possible to add one or a few servers in AWS and join them to the existing deployment? I understand I need to get a VM license for each instance in AWS, but would I be able to run the...
| User | Helpful Count |
|---|---|
| 54 | |
| 30 | |
| 29 | |
| 26 | |
| 17 |
