About lhill

lhill · 05-30-2013

I'm trying to apply the eap-fast policy I created using NAM profile editor to the anyconnect ssl VPN connection but it doesn't look like you can do this. Am I going about this the wrong way. My VPN connection auth always show up as PAP. If...

lhill · 11-20-2004

Has anyone written a Cisco NIDS custom signature that detects brute force failed attempts to login to Microsoft SQL server?

lhill · 06-11-2013

Jatin, looking into this again can you please explain a little further how to configure "radius-IETF class attribute with a specific group-policy" in the ISE settings? I don't see a radius-ietf option in ISE. The user authorization domain group is si...

lhill · 06-02-2013

Thanks for the explanation I appreciate it. I will configure the ldap map on the asa and the ISE authorization policy if I can find those conditions you mentioned and see if that works.Sent from Cisco Technical Support iPhone App

lhill · 05-31-2013

Thanks Jatin. My goal is to verify that the end user is connecting using a corporate device using MAR. So briefly reading looks like I will have to setup the Asa with ldap authorization or point it at the ISE for authorization based on endpoint being...

lhill · 10-15-2009

Same here as well. Seems this signature is causing false positives more than anything else.

lhill · 04-19-2005

No,all I see is several "Management center for CSA license", "Desktop agent", and "Server agent" listed.

Member Since	‎03-21-2002 01:29 PM
Date Last Visited	‎01-12-2024 12:06 AM
Posts	12

User Statistics

User Activity

ISE EAP-FAST over AnyConnect SSL VPN

Signature for Brute force SQL login attempts

Re: ISE EAP-FAST over AnyConnect SSL VPN

Re: ISE EAP-FAST over AnyConnect SSL VPN

Re: ISE EAP-FAST over AnyConnect SSL VPN

Re: S441 Sig 21622/1 activity

Re: CSA MC Profiler question