Activity in Security
cannot get to privileged enable mode via console
After searching through other posts, my config seems OK but still strange behaviourasa 9.20 running on FPWR chasisI cannot get in enabled mode when connecting to ASA via console.It used to work but stopped after I played (disable and restore) with aa...
FTD re-register to FMC chassis mode
Deployed a 3100 in chassis mode to the FMC a few days ago. All went to plan.Determined we needed to change the IP so decided just to delete the device from FMC and re-provision it.On the FTD via local-mgmt did a erase configuration. The device wiped ...
VPN Tunnel connecting at a unconfigured setting - Phase 1 Timer
OK, so I've got a set of ASA's and we are migrating them to Firepowers, and all seems ok. In the past we have noticed that for some reason on the ASA's, no matter what you specify as the parameters for phase 1, the rekey timer always connects at 3600...
AnyConnect DNS Issue
We are having an issue were after disconnecting from AnyConnect and connecting the next day, they get a new IP in AnyConnect but in our local DNS they have another IP which I assume is probably from the day before. This obviously causing name resolut...
The operation took longer than expected.
I have just synchronized both Active Directory and Cisco ISE, ISE is using my server (AD) as an NTP server, everything is fine, but now I'm facing an issue "Status Summary: The operation took longer than expected. This may be caused by slow network c...
Cisco 9200L : NAC behaviour with dynamic vlan assignement dead server
Hi all,I want to ask you experts some suggestion on how really work mechanism between Cisco switches and radius server when using dynamic vlan assignement and the radius suddenly will be unavailable.With server dead command under port configuration i...
Cisco anyconnect browser ERR_SSL_Protocol_ERROR
Good day to everyone.I have two Cisco ASA running on FPR2130 assembled into a balancing group, for example:vpn-gw1.example.comvpn-gw2.example.comgeneral address vpn.example.com.Firmware version 9.18.3.56Anyconnect 4.10.07062At the moment, all our emp...
[CISCO ISE][12935 ] Supplicant stopped responding to ISE during EAP-TL
Hello Everyone, I am contacting you all because i don't seem to find the needed information to resolve my issues, even though there are many similar topic as mine with the same error.We have an infrastructure using FTD ASA5506 with switch CISCO WS-C2...
Cisco ISE cannot join Windows Server Core.
My Windows Server Core having an internal address of 192.168.50.2, when natting it (NAT) it has an address of 192.168.99.36 (I'm installing Windows Server Core image on an EVE-NG VM and the EVE-NG VM is installed on ESXi).I have a Cisco ISE VM instal...
Cisco WSA log shows 503 status code
Hi we have 2 WSA out of which one WSA is showing 503 error for a specific Site. When i tried nslookup in WSA for that site it shows the server returned no data(in both WSA).But the site is working in one WSA but not in the other and after 15 mins the...
FMCv 7.2.5.1: High CPU load - how to troubleshoot?
Hello everybody,our customer has a FMCv running sugg. rel. 7.2.5.1 and has a high CPU load of approx. 97%.(see attached screen dump).The VM has 4 CPUs, 32GB RAM and 250GB HDD.The FMC is managing a HA of two Firepower 1120 running rel. 7.2.5.A FMC reb...
Resolved! CISCO WSA upgrade alert error
We have upgraded our S1000v(wsa ) from 14.5.1 to 14.5.2 and upgrade was successful but when we checked the alerts we found an alerts as An application fault occurred: ('heimdall/svc.py send_command|195', "<class 'heimdall.exceptions.unknownprocess'="...
Active accounts are being displayed as Inactive?
Can anyone explain why an active account would be listed as having an Inactive status? These are accounts with a recent logon and authentication including successful DUO pushes. It's making it difficult to track those accounts that are actually Inact...
Duo Desktop not recognized
Hello, I am using Cisco Anyconnect to connect to VPN. The system is using Duo Desktop for device health. It is already installed, running and all the checks are ok. However, I am getting this error message and not able to proceed: Install Duo Desktop...
SSM ON-Prem TACACS+ and Clearpass
Hi,I am trying to configure TACACS+ on our SSM On-Prem server so that I am able to login on the Webinterface with my AD user. The TACACS+ configuration is done in Clearpass. And the test in the configuration window on the SSM server was successful.Bu...
| User | Helpful Count |
|---|---|
| 54 | |
| 49 | |
| 38 | |
| 28 | |
| 25 |
