Activity in Security
connetion events in FMC
Hi Dears,in our company we have FMC\FTD but the logs (connection event) were saved for almost 1 week back only.i have been checked the limitation as the below tableConnection eventsSecurity Intelligence events50 million (FMC Virtual, FMC750) 100 mill...
FTD 3100 AAA in Chassis mode
HiHow do we configure AAA for the FTD in chassis mode managed via FMC?I can't seem to find any information on this? The FXOS cli doesn't appear to permit you to make any changes.But i don't see anywhere to create a Chassis AAA policy. AAA for the Ins...
Cisco ISE 3.2.0.542 External Identity Store Cert Auth via Proxy
We have implemented 802.1x with machine certificate authentication.The certificate validation is via OCSP and the question is does Cisco ISE support connection to OSCP via a Web Proxy? The assumption is that the connection would be using the system p...
Possible? ASA 9.x run AAA with Cert and AAA only on same interface
Is it possible to run Radius with Cert and Radius only on the same interface. I have different profiles for the two. but they share the same tcp port. Need to do a POC, and it would be much easier to have user login with just Radius, not Radius and c...
need to block exe file
Hi All, Need to block below exe file path on server. Can anyone help me how can i do this in Cisco secure endpoint console. c:\program files\uvnc bvba\UltraVNC\winvnc.exe
ISE DNS health check showing warning
Hi all,I have a four new standalone nodes which will be going into a cluster, I am seeing two nodes have a DNS warning. All nodes are located in the same caI can ping both DNS servers .21 and .22 and nslookup up works to resolve its own IPWhy are two...
Resolved! ISE GUI showing cannot reach page and refused to connect
Hi all,I have deployed 4 ISE nodesAll are reachable by SSH and ping. But one of them is stating refused to connect when going to the GUI via https...Why are three responding differently?
How to capture dropped packet in ftd firewalll
Hellocould you please share the solution for showing dropped packet from internet to inside lan ? i have FTD 4100 series managed by fmc I want to see output from cli or fmc related to nat transactions packet(dropped and passed) both.
Created a Route Based IPSEC Tunnel on Cisco FTD 2140
I have a Cisco FTD 2140 Secure Firewall that I am trying to build a route based IPSEC tunnel using VTI's. The vendor needs my proxy ID or encryption domain to be presented as a public IP address. So my WAN IP is obviously public but my internal netwo...
IPSec VPN Tunnel Lan-to-Lan decrypt count zero
Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
End point detection
I am new to cisco endpoint and will need some help in creating rolling 3 months analysis for end point positive detectionsand also analysis for false positive detection.Any help and directions will be deeply appriciated.Thanks
Cisco ISE Guest Portal not loading on android phones only
Hi All, We have WLC9800 and Cisco ISE 3.3 . We have setup Guest WIFI with CWA on ISE. there is DACL(on ISE) and REDIRECT ACL(One WLC and ISE) has on been configured. All work perfectly for Windows and Iphone users. But for android user, the redirec...
Can ISE change a SSID name alias broadcast?
Cisco WLC 9800 is configured to broadcast a SSID alias as "Original_SSID", the WLC is configured with a ISE controller IP, but in the client computer we see the available SSID alias as "Other_SSID".We do not access to the ISE configuration, can the I...
FMC cert expiration notification and catalyst jobs stuck "in progress"
Hello, we recently had our cert for our VPN expire without notification via alert message. I've done some research in the FMC but can't find anything that monitors certificate expiration dates. A google search points toward REST API's of course but t...
SAML IdP Certificate Error for FTD Running 7.0.1 Managed by FDM
I can't seem to overcome the following error when configuring AnyConnect with SAML according to https://community.cisco.com/t5/security-knowledge-base/configure-anyconnect-with-saml-authentication-on-ftd-managed-via/ta-p/4467779:Deployment Failed: Us...
| User | Helpful Count |
|---|---|
| 45 | |
| 43 | |
| 34 | |
| 20 | |
| 19 |
