We have been implementing Anyconnect (4.7) and are using the TND feature where I until now have been testing for the primary domain suffix and a trusted server in our DC
Previously we have been testing for the domain suffix and DNS servers. But because of that we have many locations this is a bit cumbersome to maintain the DNS server so I swapped to a trusted server instead
But remote locations experience often that the VPN connects even they are on a trusted network. Now have I tried to reduce it to a simple domain-suffix and see if this works better for us
What is your experience with it ? what are you using as criterias for this ?
This is to address those customers coming to ISE from ACS or new to ISE that need a password change portal (UCP)
What are the licensing requirements for this solution?
My Devices - For using the password change with My Devices you need plus licenses as ...
In this paper we will document the configuration and operation of an integrated solution that includes identity management, firewall, cloud-based management, and cloud-based logging.
We will use the following Cisco products:
These days everything is in the cloud. We all know that Cisco Firepower Threat Defense (FTD) is a unified software image, which includes the Cisco ASA features and FirePOWER Services. Using Cisco Defense Orchestrator (CDO), you can manage physical or virt...
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that provides a simple, consistent, and highly secure way of managing security policies on all your ASA devices. CDO helps you optimize your ASA environment by identifying problems wi...