Cisco AnyConnect | AMP, Umbrella & Multiple Groups
The environment is running the FMCv with ASA-5506-X backed by Cisco ISE. I have seen public Cisco pages for features but couldn't find much on the following:
Multiple Groups in the AnyConnect Client. Is it possible to segregate the users into groups and permissions based on their groups in the AD
Integration of AMP for Endpoint with Cisco AnyConnect. Based on the groups segregation, only specific users should synchronize with AMP for Endpoints
Integration of Umbrella with Cisco AnyConnect. Although, it seems feasible and there is public documentation available for the ASA but in case of FTD, there's limited support on it. Is it possible or integration available for this use case.
I assume you want to authorise the users when connecting to a VPN using AnyConnect? If you are using ISE, you would create different authorisation rules using AD groups as conditions. E.g.
What kind of integration of AnyConnect and Umbrella are you looking for? There is the AnyConnect Umbrella module, which is integrated into the AnyConnect client, running ASA/FTD makes no difference to AnyConnect. If off-site and not connected to the VPN tunnel, DNS requests would go direct to Umbrella. If on the tunnel then the DNS requests are tunneled to the internal DNS server.
When we said the word “hybrid” in the past, it usually recalled the image of a new variety of plant or maybe an electric car. These days, it applies to the workplace too.
The future of work isn’t “changing” to a h...
Thanks for attending our Ask the Experts (ATXs) session! Here’s the post-session resources for easy reference.
New to ATXs? An ATXs session, offered at no cost, is an hour of real-time learning led by Cisco experts, who will answer your technology q...
Cisco Secure Endpoint
New packages fit for every organization
Every Cisco Secure Endpoint (formerly AMP for Endpoints) package comes with Cisco SecureX built-in. It’s our cloud-native platform that integrates all your security solutions into one view wit...
Our Cisco experts and guests chat about how the integration of Cisco Secure Firewall + Secure Workload is securely accelerating application delivery by allowing NetOps to start running at DevOps speed, and what that means for business success.