Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,Following is the requirement Guest Wi-Fi for external users: 1. User must be authenticated with MFA. User can be pre-defined with email/mobile.2. Authentication must NOT be on AD or ISE.3. External captive portal can be used. Separate auth server ...
Hello Everyone,We have recently deployed FTDv on AWS and trying to add it to on-prem FMC. Both are on same latest version. I am trying to add command on FTDv to add FMC, from AWS console but its not taking somehow.Can someone plese guide urgently to ...
Hello Everyone, We need assistance on the following : We have a pair of vMX configured in passthrough mode on AWS (AZ1 & AZ2). We are planning to move vMX from current account/vpc to another account. I have questions on followingMoving vMX from 1 ac...
Hello,So, we have below requirement. We have firepower firewall and ciso ise version 3.1 on awsSetup a VPN profile for around 75 vendors. Each vendor will have its own access. I see currently following options1. Create single vpn connection profile o...
Hi,Hope you are doing well.Is it possible to create 2 different vpns on same ftd? say for example vpn1.xyz.com and vpn2.xyz.com. Each of the vpn will use its own dedicated outside interface on ftd like outside_vpn1 and outside_vpn2 and these interfac...
Hi,Got this fixed by redeploying instance with following in user data field. You also need to ensure proper device index for network interfaces else the interfaces will be tagged wrongly. Interfaces must be tagged in order, index 0: mgmt, 1: diag, 2 ...
Hi @Philip D'Ath Thanks for you reply.Meanwhile i got reply from Meraki support that we just need to move vMX to another account and then need to reauthenticate vMX from their. But as we know Meraki support is totally unreliable.So, I am planning to ...
Hi @tvotna @Rob Ingram Assigning group policy attribute may work but i dont want to use that, as we have more than 50+ vendors and dont want to create so many group policies.
Hi @Rob Ingram Even I think it must work as FTD debug shows that it has received pool information from ISE but somehow it is not using it and vpn getting disconnected giving reason like - no ip to assign. IP pool object is there on firewall. Now log...
Thanks @tvotna for revert.Yes, you are correct user based access rules dont work for vpn if authentication is set as saml as described in https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwa57876So, i was trying another option. Authentication SAML and...
