Hi, As we know, Microsoft IWA (Integrated Windows Authentication) enables authentication/authorization using Windows AD to provide SSO experience to users. This is not popular scheme but some customers use it in Microsoft based environments. First of...
Forum Posts
We recently implemented a pair of FW1120's with full FTD licensing. Configuring access control policies to block specific websites and URL categories.One of the categories we have blocked is "games" which does a great job of blocking those websites....
Hi, Some vulnerabilities have been reported for our hardware wsa model, please let me know how can i remediate it. Below im sharing the same. SSH Server CBC Mode Ciphers Enable OpenSSH < 9.6 Multiple Vulnerabilities SSH Terrapin Prefix Truncati...
Hello,We'd like to update the web certificate in UCSM plattform.We have 4.2(3i) version.Thank you very much and kind regards.
One of my customer has Taken DNA-P-EPLUS-BR-3Y . But as per the below document i could see that essential tier is having the features , but also i could see the below condition in the same document that ( Supported only with SD-Routing, URL Filtering...
We have made some changes to our network capacity and are wanting to monitor Interface Status and Traffic.I have added the Widgets to my dashboard but am only seeing the traffic on ETH0 (management).The Googles tell me I should be able to add the oth...
Hello All,I am trying to use the v2 policies API (https://api.umbrella.com/policies/v2) to manage Selective Decryption Lists contents but I can't find any documentation on it. Is the call not available or am I looking in the wrong place? I can manage...
Hi, This setup is in a k-8 school where we have numerous Content and Threat Categories blocked by network default. I want to create a Group Policy that will bypass most of the restrictions created in the default setting to allow school admin staff an...
Dear Cisco Community,I hope you're doing well! I’d like to suggest a valuable addition to the current Ethical Hacking course—an expanded set of Capture The Flag (CTF) challenges, with many being freely accessible.CTFs provide a hands-on, interactive ...
I don't think phishing counts as man in the middle but cisco says it is and I know for a fact that DHCP spoofing and impersonating public wifi is also a man in the middle. Why does CISCO think there are only two or is the test playing mind games with...
With the same regex on WSA, after updating WSA from AsyncOS 15.2.2-009 to AsyncOS 14.5.1-016, the regex that was supposed to block a site no longer blocks it. someone can help me ?
Hi TeamHow to get the nginx version on my cisco ironport WSA !?Model: S100VVersion: 15.0.0-355
Evening all.Having some issues with SAML via Cisco Secure Access (client and proxy.pac file). The issues are based around very slow internet speeds and evening time outs.Has anyone noticed this with SAML via Cisco Secure Access (umbrella)?We're going...
Resolved! Session resumption setting in WSA
Hey there,I would like to set up a new WSA, and got the to part of advancedproxyconfig / HTTPS, when it asks me the following:Do you want to enable session resumption.[N]>Where can I check this on my other proxies? I cant seem to find it in the HTTPS...
Hi All,We have Cisco Umbrella SIG Essentials in our deployment. We have implemented HTTPS Inspection, File Analysis, File Type Control (just *.deb and *.torrent to be blocked).I have received a request to see if it is possible to report on Web App us...
