Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi Expert,
We are trying to integrate Cisco Anyconnect with Azure MFA using LDAP.
The previous setup is without MFA and user autheticated will get specific segment and specific ACL (authorization)
Now with MFA the authentication is successful but th...
Hi,Have you add the crypto ACL at ASA ?What I am seeing is on the nat exemption ACL is traffic from outside to inside is exempt from natting, which the use of nat exempt is for traffic from inside to outside. So you need to exempt traffic from inside...
you can use crypto dynamic-map match address that acl looks like for exempt nat, which you should add line for 10.10.0.0 255.255.0.0 to .Date: Sun, 27 Nov 2011 21:08:21 -0700From: supportforums-donotreply@jivesoftware.comTo: pillai_vikram@hotmail.co...
Hi,This is the ACL issue, your acl is mismatched between 2 peers, could you post your ACL entry for the IPSec creation ?Thanks,Date: Sun, 27 Nov 2011 20:31:13 -0700From: supportforums-donotreply@jivesoftware.comTo: pillai_vikram@hotmail.comSubject: ...
Hi Partheep,The KEK is key encryption key which encrypt the control plane traffic, while TEK is traffic encryption key, which encrypt the actual data plane traffic.TEK policies is what you defined in the ACL (the traffic you want to encrypt), so it ...
