The configuration below is an IBNS2.0-based config that puts all access-mode switch interfaces into an authorized state, with no MAB or 802.1x needed, to pull device-sensor information and ship it to ISE for profiling unintrusively. It is a nice...
Hey allI have a Firepower 1010, I need to disable the SIP ALG on it, I have access to the Web Client and Telenet access to make changes, can someone give me an easy way to make these changes, I don't have the ASA Software that could access with.
We have two ISE ecosystems different and isolated (2.7 and 3.2)I must migrate guest accounts from one system to the other one.On 2.7 we have two sponsorportals and so it is on 3.2.I managed to retrieve captive portal users through a python script of ...
The configuration below is an IBNS2.0-based config that puts all access-mode switch interfaces into an authorized state, with no MAB or 802.1x needed, to pull device-sensor information and ship it to ISE for profiling unintrusively. It is a nice opti...
Hi All, Need to block below exe file path on server. Can anyone help me how can i do this in Cisco secure endpoint console. c:\program files\uvnc bvba\UltraVNC\winvnc.exe
Hi All, I configured anyconnect vpn in ASA and its working ok. I enabled ASDM access in inside interface (10.10.50.254). After connecting to VPN, i tried to ping and connect to ASDM on 10.10.50.254 but its not working and i get "routing failed to loc...
Hi,So was reading up a lot on the difference between the Cisco Anyconnect Roaming Module vs the Umbrella Roaming,Its clear that best practice is the Cisco anyconnect option as UR is EOL in a few months, so we recently deployed the new client company ...
Hello!I´m using FMC 7.2.5.1 in Edge browser on a 1920x1080 screen with 75% zoom in the browser.When I open "Objects", the table of Network objects is shown.When I want to start flipping through the pages to find something (because "Why can´t I just s...
Hello everybody, our customer is using the FMCv rel. 7.2.5.1 and many FTDs.After de-register/re-register the FMC in the Smart Software Manger because another error message four devices (7.0.1 & 7.0.5) fourdevices show the error: Threat Data Updates o...
I have a Cisco FTD 2140 Secure Firewall that I am trying to build a route based IPSEC tunnel using VTI's. The vendor needs my proxy ID or encryption domain to be presented as a public IP address. So my WAN IP is obviously public but my internal netwo...
Hello,We are having ISE for EAP/TACACS authentication and, hosted internally in our datacenter.Now we have configured BYOD captive portal that tied to AZURE SAML authentication, the current captive portal redirect URL from ISE has prepended the node ...
Does anyone had experience of Microsoft Local Administrator Password Solution (LAPS) with Cisco ISE. One of my banking customer is managing user local admin account using Laps for the helpdesk operation. Customer system team are using local admin acc...
Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
Hi EveryoneI'm using a trial version of ASAv and i believe it has full functionality but is limited in 100kbps. I'm trying to set up remote access anyconnect vpn which authenticates to our NPS radius server. As you can see in the radius debug, it see...
I can't seem to overcome the following error when configuring AnyConnect with SAML according to https://community.cisco.com/t5/security-knowledge-base/configure-anyconnect-with-saml-authentication-on-ftd-managed-via/ta-p/4467779:Deployment Failed: Us...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: