Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hey all,I'm working with DNA Center APIs. I'm not seeing how the Deploy Template API works with composite templates. I can make it work with all other templates from within the Platform GUI and testing, but it doesn't work when trying composite tem...
Hey all,I have an interesting need here. We force AnyConnect to be always on for all users. We have a use-case where some users need an exception at times, but we can't allow it all the time. For instance, let's say I need to go configure a networ...
So I support an environment that has thousands of remote VPN users. They currently do not select anything on their AnyConnect client although they can select the Group dropdown box, but there's only one Group right now -- they just click Connect and ...
I'm still new to managing of the VOIP network, but am able to do what's needed to get around Call Manager to find reports and do simple configuration tasks. What I'm looking for is a report that will show me the average number of channels being used...
I have an ASA 5510 on the outside with a Remote Access VPN. The user will need to get from the 5510, then go through an ASA 5540, then out to the subnet where they will be doing their work. I have a Cisco ACS version 5.2 that sits on a separte VLAN...
Yeah i'm pushing on my SE to do more. Otherwise I might have to use a 3rd party solution. We currently do what you're doing where we have a separate XML file applied to a separate Group Policy that matches on AD Group and the XML file is set to Alway...
Thanks for the reply. So are you saying DAP will allow Always-On to be enabled unless they're accessing a specific network? Just trying to make sense of the screenshots and that's what it looks like. I do want Always-On to stay enabled if they were...
I think I should clarify my last post -- ASA points to ACS for aaa-server, ACS can then talk to RSA and either gets the AD Group info from there or directly from AD, then passes this back to ACS. I just don't see how this could work if some users do...
Appreciate the idea here. Unfortunately everything here would involve a lot of changes and like you said, could get hard since we'll be migrating slowly by AD Group I'm assuming. I don't want to give Group URLs to people as the majority are non-tec...
Interesting. So we use ACS, eventually moving to ISE. So how would this work? By default today, when a user authenticates, it's against RSA. That means everyone would have to have an RSA method before it could even receive this tunnel-group infor...
