Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a few hundred 891F routers with IOS IPS enabled. We used to update signatures using CSM. Now I need to convert them to auto-update. I have not been able to find any working examples of updating signatures by specifying "url" instead of "cisc...
I am currently running Cisco Secure ACS for TACACS and other things. I have to move to another platform due to PCI DSS 3.2 requirements.
ISE is the leading contender to replace ACS but I also have a requirement to implement multi-factor authenticati...
I am setting up a new active/standby pair of ASA 5525-X appliances. They are currently running 9.4(2) code. I have a couple of other ASA failover pairs in production but I never bothered setting up the management interface for those.
I thought I'd ...
I'm configuring a new 3850 switch. I've never used the Gi0/0 management interface before. I'd like to use on this switch because I don't really need to do any layer three stuff on the switching ports.
I have logging, ntp and ssh working on Gi0/0 wi...
I am using HSRP to create a failover pair of 891F security routers. This router pair will act as a firewall between headquarters and a "mostly trusted" partner. I have a directive to use stateful inspection whenever possible so I'd like to use the ...
Thanks for the reply Marvin!
Unfortunately, I have to be absolutely sure before making a recommendation to purchase. I was pretty sure myself a while ago but when I went through one of the SafeWord implementation guides it was only about RADIUS cli...
John,
I don't have any info on ACS supporting TLS 1.1. I seriously doubt Cisco will do it since it would likely mean just as much work for them as adding TLS 1.2 support.
I have to worry about PCI 3.1 compliance. PCI also bans "some implementations...
John,
Here is a link:
http://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise/design-zone/ssl-tls-vulnerability-response.pdf
according to my Cisco account exec, Cisco has no plans to add TLS 1.1 or 1.2 support for ACS. ISE is the replaceme...
