We are using Anyconnect version 4.7 on an ASA5515x. We have about 60 users setup with Local Accounts on the ASA for authentication. This is becoming a headache when we want to force a change of passwords for the users. I know the local user database method does not have the option to let users manage their own passwords. I really want to keep the VPN accounts separate from the internal AD accounts. What would be a good option for allowing the users to manage their own passwords while keeping the VPN accounts and internal AD accounts separate. RADIUS looks like the option to get this done but I have no experience with it. Can anyone offer some guidance?
Radius is one valid option. Do you have ISE in your environment? What is the motivation to keep AD users separate from VPN user accounts? Anyways if using radius you will want to configure your VPN connection profile/s for AAA. If you desire to use certs & AAA this is an option too. In that scenario you would perform cert auth at the ASA and username/pass against your AAA server (radius), which could be local radius accounts or mapped to AD.
Posting this for anyone interested in using a Raspberry PI as a flow collector for Stealthwatch. We created a very lightweight version of our software. It can create flows if the eth port is attached to a SPAN or you can forward NetFlow/IPFIX ...
Dear Team Suppose we have hundreds of rules in access policy on cisco fmc device. Now I want to fetch all access policy rules in which I have mentioned some specific port number X. Can anyone help me with the process to fetch the same?
Greetings everyone, Happy New Year! I would like to thank you all for making our ISE demos in dCloud a great success!
The ISE instant demo has been in the top 5 of Enterprise demos for a long time now and recently just moved into the #1 and 2 slots...
User Experience Enhancements
As part of the Cisco Common User Experience program, we are working towards a more uniform user experience and terminology alignment. This program runs across all Cisco security products.
A More Intuitive Cognitiv...