Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello!
We have encountered a problem with our Identity Firewall scheme recently (it works on CDA, 4 Microsoft 2012R2 DCs and Cisco ASA as a consumer device). We've noticed that some ip-to-user mappings are missing on CDA although users are in domain ...
Problem is solved. The issue was in test ASA device attached to CDA. It had unnecessary parameters (inactive and NetBIOS timers) because of which it sent mapping removal request to CDA. CDA then sent this request to production devices.
