Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I want to restrict CLI access to our ASA 5510 to one Active Directory group. Currently the ASA authenticates against our LDAP/AD server, and anyone in the organization can log into the ASA using HyperTerminal (enable password is another matter, howe...
ASDM and IDM work fine with my SSM. I'm attempting to add my SSM as a new device into (just installed) IME 7.0.1. Dialog box says: IOException when try to get certificate: java.security.cert.CertificateExpired Exception: NotAfter: Tue Jul 28 04:44:...
After upgrading from 8.0(2) to 8.2(1) I noticed that a directory named coredumpinfo, containing a file coredump.cfg was created. The file size of coredump.cfg is 43 bytes. Is this normal? The ASA functions normally after the upgrade.Thanks in adva...
Thanks for the help on this. What I've done is to remove AD/Radius authentication entirely from ASA login (ASDM,Telnet,SSH), going strictly with LOCAL accounts. This ensures run-of-the-mill users can't sign into the ASA over the network, and contiu...
Found answer to this, via Cisco Service Request. Used CLI on AIP-SSM:sensor# tls generate-keyThen I refreshed sensor details in IME, tried adding a new device and all worked fine. IME has the AIP-SSM reporting I was after, so - good deal.
Is your ASA configured to use a syslog server? My PIX 515e (before I replaced it with my ASA) would close all ports, disconnecting Internet, when the syslog server went down. Restarting the PIX would bring it back up. Perhaps the ASA does the same...
I used the instructions here:http://6200networks.com/2007/10/31/block-im-traffic-on-asa/Works like a champ. Uses ASA firewall, not the IPS. I have an IPS too, and enabled IPS signature rules (pre-defined) intercepting MSN Messenger Activity, AIM, et...
