Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,We need to audit the network traffic and also apply some rule based on user or groups. Is there a way that a switch or a wireless controller can provide a user to ip mapping table? this need to be "auth-level", the data need to be unique and fr...
Hi,I'm a starter in configure an enterprise level auth for wired and wireless.I previously config a VPN use cisco FTD and anyconnect as client. the authentication on VPN I can use both certificate and password, I notice that RADIUS server in this cas...
Hi, We have a FPR1010 device with FTD image and manage by FDM.A risk was found in VPN service (outside interface and port 443) that it's using a commonly used Diffie-Hellman primes for SSL key exchange. How can I change that DH primes? The server is ...
Really? I think in the default configuration the lan authentication only on layer 2, i tried to change ip in a wireless with wpa2-enterprise authentication method and success. Please tell me if i miss something or this behaviour need to an additional...
thanks, you mean I need direct control to the client OS? such as do not give user a local admin privilege in windows to prevent the unexpected ip change? No good way to deal this in network scope?
Is there a interval between switch send accounting packet to ISE? will it a time gap when user change their IP after authenticate? Like a TOCTOU attack, the user already changed to a new ip but FTD still hold a old version of mapping. And also if som...
yes, thanks for your quick reply. We do have a ftd with fmc. And also are planning for the ISE. But, I'm intresting for how the switch and wireless controller provide the latest user-ip mapping to ISE? Which config or technology will use? especially ...
