Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi Experts,
Every time the Secure client posture process starts, it warns about untrusted certificate for the PSN it is connecting. Certificates are issued by the internal CA and the computer has the root and intermediate CAs certificates added into ...
Hi Experts,
ISE deployment: 1 Node (PAN/MNT) | 1 Node (PSN) [version 3.2.0.542 patch 3]
I've setup everything as per the guidelines.
How To: Agentless Posture Configuration, validation & Troubleshooting - Cisco Community
I've attached the errors.
Ev...
Hi Experts,
I am looking for some options to migrate and FTD 2140 managed by an existing FMC over to a new FTD 3110 which will be managed by a new FMC.
I've been having a look at the migration tool and I see that all the options are only form FDM man...
Hi Team,
We have an AnyConnect remote access solution on an ASA headend with Split tunneling enabled.
We've got tunnelspecified enabled with RFC 1918 permitted over AnyConnect. How do I go about enabling local LAN access ?
Configuration snippet:Group...
Hi Experts,
We've setup anyconnect with Machine certificate only authentication. We've got a few profiles on the ASA.
The users hit the correct connection profile only when the option to select the connection profile is enabled.
If I disable that opt...
Thanks @Milos_Jovanovic, I appreciate your quick response. In an FMC managed FTD is there any way to login to the appliance directly and take a backup of the config (like any other NGFW vendor). I believe this can be done only via external authentica...
We've got thousands of AnyConnect users in the environment. It's not possible to deny each and every local network. Any one of them would want to access their local LAN. I still need RFC 1918 sent over tunnel and still be able to access Local LAN. An...
Hi Experts,
I have a scenario where External-ASA does a translation and the Internal-ASA acts as the AnyConnect gateway.We can establish AnyConnect on the Internal-ASA successfully. My issue is with reachability to resources.The "outside" interface o...
Hi @Josh Morris , I am attempting to setup a similar solution. The radius token server doesn't seem to be possible as Microsoft doesn't allow the option to install the MFA server on the on-prem domain controller anymore : Getting started Azure MFA Se...
