HelloWe have a lot of clients getting the following error when contacting diffrent sites: ERR_SSL_PROTOCOL_ERROR, we have read that SonicWall and Palo Alto also have these problemes. Solution is to turn off "TLS 1.3 Hybridized Kyber Support" in chro...
I have just synchronized both Active Directory and Cisco ISE, ISE is using my server (AD) as an NTP server, everything is fine, but now I'm facing an issue "Status Summary: The operation took longer than expected. This may be caused by slow network c...
I did join ise1 as a join point on Cisco ISE GUI, and then deleted it, but now I want to rejoin it, but an error message showed up telling me that : "Resource with this name is already configured in DataBase."======> How to definitly delete it ? and...
Hi Team,Our Router having many ikev2 proposal, as per TAC suggestion we need to combine in to single policy. Please let me know for this activity any down time needed ?
Hi all. Cisco ISE Posture Windows Patch Management Definition update not working properly. Cisco ISE version 3.2 patch 5. Client Agent : Cisco Secure Client 5.1.2 42 Windows client 11 23H2 and Windows Update version is 1023.x. Comliance Module : ...
Hello! Does anyone know if there's an easier way to configure and create rules that require manual entry in the FMC policy creation dashboard? We are working on a migration from the ASA which has over 300 rules and our company would also like to reca...
Hi,Please I need an advise to determine the right NGFW based on the below requirements:- Each NGFW physical appliance should provide minimum of 240 Gbps Firewall throughput.- Each NGFW physical appliance must support minimum of 850,000 new TCP connec...
Is there a tool available to convert a Check Point Security Policy to a Cisco Access Control List?The process of doing this manually would be time consuming and could result in human error
Hi All. I would like to get your thoughts on the following issue i have been facing since implementing Dual ISP and failover for site-to-site vpn tunnels.Hub Site:ASA5515 using 9.6(4)42Spoke sites:Cisco ISRs using 15.1(4)M8, using voip services over ...
I have multiple AnyConnect connection profiles for various remote users that provide access to different internal networks. The authentication method needs to be certificate only, but there doesn't seem to be a way to prevent an issued certificate ho...
I'm speaking of Essentials/Advantage/Premier. We use on-prem SSM.is there way to know how many licenses Cisco ISE gets from the binding to a virtual account on Cisco SSM?The only piece of information is the consumed ones, like knowing how many you ar...
Hai All can any one please give best practices for below deployment customer has Cisco ISE 3515 running on 2.7 which is EOL/EOS we Proposed new 3715 model. For configuration migration suggestions.
Please see the attached file. When a Windows client connects to the network and its supplicant is configured to send the computer certificate, what exactly is the PSN doing with this certificate? In the attached i have a use of Lab_dot1x_Certs (See...
Hi,I am trying to configure TACACS+ on our SSM On-Prem server so that I am able to login on the Webinterface with my AD user. The TACACS+ configuration is done in Clearpass. And the test in the configuration window on the SSM server was successful.Bu...
Hello, I am using Cisco Anyconnect to connect to VPN. The system is using Duo Desktop for device health. It is already installed, running and all the checks are ok. However, I am getting this error message and not able to proceed: Install Duo Desktop...