Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Dear Cisco,
We user ISE v 3.1 P10 with Closed-Mode configuration.
We notice when pc start up un till log in AD user successful to delay more time. Some times it take round over 5mins or more than.
Kindly share your commend / good practice to reduce t...
Dear Team,
We are looking the stable FTD version can upgrade to fixed the vulnerability and ensure it cover suck of attack like VPN brute force...and prevent AD Account locked out even attacker known the legit AD user.
Kindly share commend / good pra...
Dear Community,
We explore the solution to mitigate VPN brute force attack in Cisco FTD.
AD users always locked out when under targeting potential VPN brute force attacks so it leads to AD account locked out and impact to legit users (internal user...
Dear Cisco Community,
We use ISE version 3.x both using LAN dot1x and VPN tunnel. ISE integration with AD for Authentication.
When user connect to VPN ( Cisco Secure Client ). It required to check AD user credential, PC certificate and OTP. It also c...
Dear Cisco Community,We use ISE version 3.x with around 3K licenses.We have kind of MAB device and PC so on ( Essential, Premier, Advantage ).In case we use over current 3K licenses. What is occur?Are there those devices become Noncompliance or else?...
Hello @Rob Ingram Cisco TAC is also recommended to upgrade to the current cisco golden star version. Did you tested and resolve the case from vpn bruteforce? thanks,
Hello @ahollifield You mean to implementation certificate-based as first authentication on FTD and set expired date? Even external user / non-domain devices try to use this certificate but cannot promised and failed authentication stage? And not lea...
