Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Not sure I understand what Cisco is trying to accomplish or more importantly what action is needed. CSCvw48062 is a feature enhancement to help mitigate vulnerability CSCvv30103. Correct? I guess I should update AnyConnect to version 4.9.04053. Af...
I am in the process of implementing 802.1x for our wired infrastructure. Laptops are using certificates from a local CA for authentication. I am at the point of implementing CRL. I successfully added the CRL settings but I am finding there are som...
I would like to use multi-factor authentication for admin access to my switches and routers. Currently TACACS and an ISE (2.4) are being used. My first question is the switch commands. Does anything in the switch or router configuration need to ch...
I having difficulty with EIGRP route distribution. I do NOT want static routes to be redistributed into EIGRP yet both 10.0.0.0/8 and 192.168.0.0/16 are being redistributed.
router eigrp 100
network 192.168.100.0
network 192.168.100.232 0.0.0.3...
I am building a dot1x configuration for my switches. I am using the new-style (authentication display config-mode). I have built the configuration to work correctly for MAB and dot1x authenticates successfully. I am at the point of creating the co...
Originally, we had a restrictive policy with pending and a more open policy for compliant. It has taken months; we believe the restrictive policy is preventing the normal boot up and login process from completing successfully. We discovered applica...
Unknown (policy set config) and pending (live logs) are the same. I see laptops go to the unknown/pending state when connecting to the network. Followed by either compliant or non-compliant. I haven't seen a device go from complaint to unknown/pen...
My organization continues to work on posture settings. We have had posture assessment set to 1 day and a 4-hour cache for some time. I am interested in changing perform assessment to every time and either disabling cache or setting to 1-4 hrs. Anyon...
The above explanations are helpful. Thank you. I have more questions.I think I am interested in daily scans. Much of my organization works Monday-Friday. 8a to 5p. Staff are remote one day and in the office the next.Setting perform posture asses...
