Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I'm trying to create flexconfig for ether-type access-list but it's failing. I followed the instruction of creating the FlexConfig object with the following ACL, but it's failing. access-list permit-bpdu ethertype trust bpdu
access-group permit...
Hello,I pushed the configuration from the Migration Tool to FMC, I'm doing ASA to FTD Migration. Now the pushed-config is sitting there on FMC waiting to be deployed. But now I don't want to push the config, instead clear or discard what's there for ...
HelloI'm in the process of integrating Cisco ISE and RSA Token Server. I'll need to allow Firewall ports in this ISE Distributed Deployment. The question is, does authentications for RSA Tokens come from a PSN or from a PAN towards the RSA Server?Tha...
Hello,My goal is to upgrade from 2.1 to 2.7, I'm in the process to downgrade a new SNS3695 to 2.4 so that I can restore the 2.1 backup on it. When I attached the 2.4 iso image, I received errors (attached 3 screenshots). ERROR: UNABLE TO DETERMINE IN...
Hello,Does ISE TrustSec replace regular internal L3/L4 ASA Firewalls? These firewalls could be protecting two subnets from talking to each other or protecting the DMZ from internal/external traffic. I'm trying to understand if I deploy TrustSec, will...
Thanks for the hint @Mohammed al Baqari , when I enabled the debug "debug config-cli 255" I figured out it was the interface name that wasn't matching for some reason. I corrected, and FTD took the config.Appreciate your help.Ain
Thank you Greg. It makes sense. My clients are authenticating with regular 802.1x, so it means PSNs initiate/relay the authentication requests back to RSA server.
