Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Yes, just tested it.However if you use always on VPN and/or cert auth for users you will posture the endpoints two times.Better to apply posture only for the user connection if the above conditions apply.
I just configured this.Created a separate AAA group on ASA for ISE where the authorize-only option is checked.Assigned it to the respective tunnel-group's advanced/authorization section.The tricky part was getting the correct username from the comput...
DNS servers are Windows servers and the traffic is passing through the FTDs but DMZ servers resolving from the Internet are also working fine. Version 7.0.5 for both.You need to make sure the correct ACP is applied to the FTDs with security intellige...
Yes, attach a DNS policy to the ACP and configure a rule using a custom DNS list by adding *.zip and *.mov to a new line in a .txt file and uploading it as a new object.
