Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
If your organization is a complete (LAN/WLAN/VPN) TLS authentication environment, then how are you renewing endpoint certificate when a user comes to network with his expired certificate? What is the industry standard or a proactive setup you have in...
I am in a new environment where I see few ASR 1002-x series routers.
I wonder how I can make sure these are on which ESP license level.
Is there any command I can run and verify?
Thanks,
Josh
Hi!
I am sorry if this topic was already discussed in this forum!
I think the ACS (5.6.xx) can't do more than a single identity certification for EAP-TLS authentication (please let me know if I am wrong and can be installed multiple certificates into...
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160916-ikev1
Cisco recently published this vulnerability information which affecting all my IOS XE doing Ikev2 today. I have a huge deployment of Ikev1 with DMVPN and I ...
Hi,
I am testing anyconnect with certificate based authentication and seems it is working. We use computer based certificate not user based.
The problem is when I check the session table below, the user's info like CN (computer name or username) is...
Thanks for your reply Mohammed. We have certificate auto-renewal is setup for users who are on the network before their certificate validity expire. AD with GPO policy renews Windows cert automatically and JSS forces for Macs. The issue I am trying t...
This is where I get confused.
If you look at the index from 26 to 31, all level of throughputs are being activated and period left: 8 weeks 4 days. So what will happen after this, it just runs on default throughput which is 5G I believe? I don't ha...
Sorry, I just saw your message. In my case it was the packaging (Marimba) tool which had some corrupt and incorrect files named pushed to C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Web Security\
The fix was a fresh re-install with ...
Hi Gagan,
Thank you for confirming that the ACS do not do more than one certificate for EAP authentication and I think the same applies for ISE as well.
I have no problem generating a CSR and adding back to the system after signed by CA. I am here to...
