Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Is it possible to install Cisco ACS 5.0 on VM with lower hardware requirements?? In the documetation there are the following minimum hw requirements:The hardware requirements for the VM must be similar to the CSACS 1120 Series appliance hardware conf...
Hi !we have an ASA5510 for VPN and having up to 100 VPN connection. These are 90 EzVPN and 10 Site-to-Site connections. The ASA5510 is physically installed with its outside interface in a DMZ_VPN_OUTSIDE. In this DMZ we have a Pix515 as central firew...
Hi, we have a ASA5540 configured with up to 25 VLANs. Now we want to limit 10 VLANs with 100 MBit/s for each VLAN. These VLANs are on the same physical link.How can this be configured? Have anyone doing this before, or have you any documentation with...
Hi, I have the following document about building a LAN2LAN VPN including NAT. http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a00801ae24c.shtmlThere?s no problem doing this with the concentrator. Now I have to...
HI,
just came back from holidays
Good news!! I also did some new tests within this use case. It works also in my testlab with 9.7.1(8).
I configured my client from scratch and it uses the user certificate for authC and authZ. So I can see the...
we can use the machine certificate for that use case. For this you have to check both certificate stores ("ALL"). If you only check one of the stores, "machine" or even "user" the multi-cert auth is not possible.
The user information for the ISE coul...
Hi Marvin,
excerpt from the documentation (ASA 9.7)
########
you can now validate multiple certificates per session with AnyConnect SSL and IKEv2 client protocols. The Aggregate Authentication protocol has been extended to define the protocol excha...
Hi Dinkar,
thanks for this information. I will contact my Cisco accounts.
There is a new feature in 6.0.1 called "Captive Portal and Active Authentication"
In order to provide better visibility in mapping users to IP addresses and their associated n...
