About csco11552159

csco11552159 · ‎06-12-2018

Hi, I m planning to use TS-Agent and ISE/ISE-PIC API integration to get ID, IP and Ports mapping for FMC. But it seems there is a bug:CSCvh50115 i m using Agent 1.2 but still doesnt work. anyone have an idea how to make it work?? thank you.

csco11552159 · ‎03-13-2018

Hi, Is there a way to create Negate Objects on FTD 6.2? thank you.

csco11552159 · ‎03-13-2018

Is there a way to create Negate Objects on FTD 6.2.2? thank you,

csco11552159 · ‎11-21-2017

did you get any other solution instead of downgrade? I got same issues.

csco11552159 · ‎09-14-2017

Hi, did you take a snapshot?

csco11552159 · ‎08-07-2017

In P1 at least we can select Network Condition from Library. Once upgraded to P2, this option is gone from Library .

csco11552159 · ‎08-05-2017

but we cannot save it in Library or read existing one from Library we already created in P1......

csco11552159 · ‎08-04-2017

P2 didnt fix the problem. After we upgraded from 2.1P3 to 2.2 P2. we even couldnt select Network Condition from existing library. NC is missing during P1 to P2 upgrading.

csco11552159 · ‎08-04-2017

Patch 2 still doesnt fix the problem. and make it even worse!!!. Network Condition doesn't exist from Policy GUI anymore: if you want to select Network Condition from existing library, the Network Condition category is missing.

csco11552159 · ‎04-21-2017

how do you solve it ? i have same problem.

csco11552159 · ‎04-04-2017

i have same question when i did my PoC with Cisco FTD. We got like 5000+ firewall rules and 10K+ objects....... without a good automation tool, it is mission impossible. Hope cisco can realize the problems and develop some tools for help. Otherwise, customers wont move to Cisco. On Palo alto and Fortinet side, they have tool to do it ..... much easier for customers.

csco11552159 · ‎11-12-2015

ssl decrytion is still better to go offload. but if you take a look cisco FP9300, you will see they are planing something to make it work.

csco11552159 · ‎11-03-2015

So far as I know they couldn't. Most vendors have a terminal server agent to collect users login info with assigned port range. But sourcefire doesnt have it. We were asking this feature too. However, they dont have.

csco11552159 · 09-24-2018

what if we deploy PSN to each "Site", witll ISE use site based DNS resolution to find all DC? we do ...

csco11552159 · 09-21-2018

checked with our AD admin, our DNS only resolve some of DC based on domain but ISE seems not to use ...

csco11552159 · 09-20-2018

Opened a ticket with TAC wait for some updates. Psn with passive ID enabled only see the "site" DC w...

csco11552159 · 09-20-2018

we saw the same result for other domains. it seems site impacted PassiveID DCs....

csco11552159 · 09-20-2018

Recently we are trying to add new DCs into PassiveID list to use WMI monitoring. The problems how IS...

csco11552159 · 09-04-2018

i see. thank you. Do you know if there is a session limitation? Like Agent method, in the document m...

csco11552159 · 08-20-2018

Hi, do you know if i have PSN1 and PSN2 in same cluster, will both query same AD server? or PSN1 wil...

csco11552159 · 08-20-2018

Hi, if we are using WMI to monitor all our DCs( over 100 in 2 forests), the account we used for WMI ...

csco11552159 · 07-12-2018

so we have to change all our DC's registry to make it work ,right? will require the same setup for S...

csco11552159 · 07-11-2018

thank you. so if we manually created these keys, we can try to avoid "Full control", right ? regardi...

csco11552159 · 07-11-2018

these 2 keys: HKEY_CLASSES_ROOT\CLSID\{76A64158-CB41-11D1-8B02-00600806D9B6}HKLM\Software\Classes\Wo...

csco11552159 · 07-11-2018

i m following the PIC document: https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/pic_admin_gui...

csco11552159 · 07-10-2018

thank you.i will send to FMC for now. hopefully some changes coming soon.

csco11552159 · 07-06-2018

hi John & Hsing-Tsu,So in order FMC to have correct User ID, port and IP mapping, TS-Agent directly ...

csco11552159 · 07-06-2018

Thank you.and on FMC, in this way will only keep the last user login.

Date Registered	‎02-15-2015 07:01 PM
Date Last Visited	‎12-05-2018 11:00 AM
Total Messages Posted	97
Total Helpful Votes Received	32

CSCvh50115 - REST API Port info in GUI ...

Is there a way to create Negate Object ...

FTD 6.2.2 Negate Objects

Re: High CPU usage Cisco 4506-E SUP8-E

Re: Cisco Bug: CSCuz25672 - ISE 2.0.1 I...

In P1 at least we can select

but we cannot save it in

P2 didnt fix the problem.

Patch 2 still doesnt fix the

how do you solve it ?

i have same question when i

ssl decrytion is still better

Re: NGIPS - How Host Detection works (T...

Re: PassiveID add Domain Controller (missing DC)

Re: PassiveID add Domain Controller (missing DC)

Re: PassiveID add Domain Controller (missing DC)

Re: PassiveID add Domain Controller (missing DC)

PassiveID add Domain Controller (missing DC)

Re: ISE PIC WMI Questions

Re: ISE PIC WMI Questions

ISE PIC WMI Questions

Re: PIC identity mapping question about DCOM and WMI Registry key

Re: PIC identity mapping question about DCOM and WMI Registry key

Re: PIC identity mapping question about DCOM and WMI Registry key

PIC identity mapping question about DCOM and WMI Registry key

Re: ISE cannot sent TS port range to FMC

Re: ISE cannot sent TS port range to FMC

Re: ISE cannot sent TS port range to FMC