Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have requirement to mannage the Cat6500 switches, FWSM, PIX and other network devices via ssh.However, ssh should not use the local Username/password configured on the device instead to use 3rd party CA like Microsoft.I know CA part for IPSec imple...
I have defined Network Device Group say ?Access.? where multiple AAA clients are grouped .Ex:NDG is Access ?> All the Access devices are added as AAA Clients.Currenlty multiple users who belongs to ACCESS( Group name) are accessing all the AAA Clien...
I have to upgrade the PIX OS from 6.3(1) to 7.X.There are few crypto ( site-site)configs with preshared keys.I remember that I had faced issues on the 1700/2600 old routers when upgrading the IOS, the preshared keys seems to be not working.I used to ...
Hi,Currently WS-SVC-FWM-1 (FWSM)is installed in 6509.But now we are considering to place another FWSM for redundancy.I could not see WS-SVC-FWM-1 in the dynamic config tool.Can WS-SVC-FWM-1-K9 works with WS-SVC-FWM-1 as active/failover.Is there any c...
Hi I am trying to see the syslog from VPN3060 with 4.7.2E running.Syslog is enabled under events and also under classes. I have tried with even changing sev to sev 1-13, events to log ( under classes) & changing syslog format from original to cisco i...
Hi,I have a clarification.Why do we need to match FWSM context to ACE context.Setup:MSFC--Routed Mode--FWSM---Bridged Mode( multiple VLANs)---ACE (multiple context)lets say FWSM uses one context.ACE uses 3 context.FWSM to ACE in bridged mode.Is it no...
as per this link cisco IOS doesnt support ssh authentication with CAhttp://www.cisco.com/en/US/tech/tk583/tk617/technologies_q_and_a_item09186a0080267e0f.shtml#qa4Q. Does Cisco IOS support SSH authentication with digital certificates? A. Cisco IOS d...
Hi,Thanks for your response..Creating another group for these users are not an issue..Since all the AAA clients are part of NDG, I willnot be able to pull out few AAA clients and associate to the new group. I have to see, If there is an option to per...
Hi,thanks for all your responses.Yes, write net is an option but I didnt try since 6.3.1 to 7.X is major code change.I could try all these by knowing the preshared keys on hand.What I need to confirm is " there should not be any issues" after the OS ...
