About Aref Alsouqi

Aref Alsouqi · 05-21-2026

Glad to hear it's working as expected. Tbh, I don't think there is a way to reference a list or an identity group in this case. However, one thing you could potentially explore would be to go through ISE endpoint groups and make sure none of the MACs...

Aref Alsouqi · 05-20-2026

I don't think using certificate-based authentication would make any difference here. Have you tried to use the public IP of the firewall rather than the FQDN just for testing as mentioned by @Rob Ingram?

Aref Alsouqi · 05-20-2026

I don't believe redistribution or NAT would play any role here because from what you explained the traffic is not fully dropped, some passes and some not. I believe it might be an issue with the firewalls resources that can't cope with that amount of...

Aref Alsouqi · 05-20-2026

Please try this and see if it works. - Go to your interested authentication policy- Add an authentication rule above the MAB common one- Add the compound condition "Wired_MAB" or "Wireless_MAB" or both- Add a new condition and select "Radius" from th...

Aref Alsouqi · 05-13-2026

That's interesting. Not sure if your FTD is managed by an FMC, if so, please check this post of mine and see if it helps, it shows how to configure AnyConnect on FTD with ISE authentication which you can just ignore that section: https://bluenetsec.c...

Member Since	‎09-22-2012 04:40 AM
Date Last Visited	‎05-29-2026 03:35 AM
Posts	2,622
Total Helpful Votes Received	1824

User Statistics

User Activity

Re: MAC Blocking During Cisco ISE Authentication Phase

Re: Download VPN Client from FTD

Re: ASA has problem with SSL config

Re: MAC Blocking During Cisco ISE Authentication Phase

Re: Download VPN Client from FTD