Dear community, I would like to know if on a Web Security Appliance On Prem it is possible to block executable file included in pdf or docx files? I can block exe downlaod, but looks that when the exe is included users can download them! Thank you
Forum Posts
Hi All, I have generated certificate from wsa appliance .pem format and same using on client machine under trusted root certificate. Can i use that certificate for https decryption or need to have CA signed or AD signed certificate. Pls note- User id...
has anyone done WSA onprem to umbrella SIG migration. How to get the Identification Profiles, Access Policies from WSA migrated to Umbrella SIG.What config changes to be done in Endpoint for the new Umbrella SIG proxy control to be effective.
Hi All, I have two WSA at 2 location with distinctive configuration. Need to know can we create csr from one wsa and use it for both ?
Hi, As we know, Microsoft IWA (Integrated Windows Authentication) enables authentication/authorization using Windows AD to provide SSO experience to users. This is not popular scheme but some customers use it in Microsoft based environments. First of...
Hi, Some vulnerabilities have been reported for our hardware wsa model, please let me know how can i remediate it. Below im sharing the same. SSH Server CBC Mode Ciphers Enable OpenSSH < 9.6 Multiple Vulnerabilities SSH Terrapin Prefix Truncati...
Hello,We'd like to update the web certificate in UCSM plattform.We have 4.2(3i) version.Thank you very much and kind regards.
One of my customer has Taken DNA-P-EPLUS-BR-3Y . But as per the below document i could see that essential tier is having the features , but also i could see the below condition in the same document that ( Supported only with SD-Routing, URL Filtering...
We have made some changes to our network capacity and are wanting to monitor Interface Status and Traffic.I have added the Widgets to my dashboard but am only seeing the traffic on ETH0 (management).The Googles tell me I should be able to add the oth...
Hello All,I am trying to use the v2 policies API (https://api.umbrella.com/policies/v2) to manage Selective Decryption Lists contents but I can't find any documentation on it. Is the call not available or am I looking in the wrong place? I can manage...
Hi, This setup is in a k-8 school where we have numerous Content and Threat Categories blocked by network default. I want to create a Group Policy that will bypass most of the restrictions created in the default setting to allow school admin staff an...
Dear Cisco Community,I hope you're doing well! I’d like to suggest a valuable addition to the current Ethical Hacking course—an expanded set of Capture The Flag (CTF) challenges, with many being freely accessible.CTFs provide a hands-on, interactive ...
I don't think phishing counts as man in the middle but cisco says it is and I know for a fact that DHCP spoofing and impersonating public wifi is also a man in the middle. Why does CISCO think there are only two or is the test playing mind games with...
With the same regex on WSA, after updating WSA from AsyncOS 15.2.2-009 to AsyncOS 14.5.1-016, the regex that was supposed to block a site no longer blocks it. someone can help me ?
Hi TeamHow to get the nginx version on my cisco ironport WSA !?Model: S100VVersion: 15.0.0-355
