Team,We have a new Cisco Firepower 1120 just configured with basic configuration.After the admin user I added another user with the "configure user add" command.This new user can SSH to the device but cannot SSL.Further, I want to ensure that this ne...
Hi, I have one issue with IPSec tunnel Lan-to-Lan between ASA 5525x (v9.8) and ASA FPR 2110 (v9.16). My Tunnel is up but ping between each client was not successful. Both peer status sh cry isakmp sa in "MM_ACTIVE".I ran packet-tracer icmp between pe...
Good afternoon, Cisco community. I faced a problem when configuring RADIUS server using switch as authenticator. When using router everything was not complicated and worked, example below.But my supervisor said that it is wrong to do it this way and ...
I have created an external admin group in ISE, which is pointing to an AD group. There are several users in this AD group.Will all the users in this AD group gets ISE admin access or can it be restricted to few users.
Hi EveryoneOur client for ISE software still uses version 2.6 with pach 10,We will upgrade the software to 3.1 with patch 8, please provide a recommendation link from CiscoI'm afraid that if I downloaded it wrong it would have fatal consequencesThank...
Hello,Our Cisco ISE HA does suffer from some performance issue and by checking the logs, it became obvious that were are dealing with a space issue: Sending SNMPv2 trap for partition /opt/podman/containers/storage/overlay/...merged which reaches the ...
We receive this vulnerability on Cisco C9120AXI-E Access Point, Let me know if anyone has solution for this vulnerabilityCVE ID: CVE-2023-48795https://bst.cisco.com/bugsearch/bug/CSCwi61646?rfs=qvloginhttps://www.tenable.com/plugins/nessus/187315
Hi bros, Our customer is asking us on the ISE bwd requirements for with some specific cases below: The number of EUs are 5000 from many branches, connect to DC/DR through WAN link.How much minimum bwd needed for one user authenticate successfully a...
I have a DMVPN network with 4331 hub routers. Our HQ in Memphis has a hub on AT&T, and another on Lumen. Our New York hub is also a Lumen connection. All are 500Mb up/down. We have about 35 spokes around the US that peer to all 3 routers. BGP is the ...
We are moving from Zscaler to Umbrella and use Canon Uniflow for the printers.The printers worked fine before Umbrella but can not print anymore since moving to Umbrella.There is only default policy enabled for the tunnels from sdwan routers to Umbre...
Hello,We have a cisco asa 5510 Firewall running the latest version 9.1(7)23 connected to our Office through an IPSec VPN Tunnel, and we are trying to configure a new management machine to connect remotly to the management ip address of the firewall, ...
Hi all,I want to ask you experts some suggestion on how really work mechanism between Cisco switches and radius server when using dynamic vlan assignement and the radius suddenly will be unavailable.With server dead command under port configuration i...
I was listening to the latest episode of Packet Pushers Heavy Networking talking about a customer’s experience with ditching their F5 in favour of the built in IOS-XE RADIUS load balancing feature. Is anyone else out there using this, and in particul...
Hi,I have a Cisco FMC 1000 that manages about 20 FTDs.https://www.cisco.com/c/en/us/products/collateral/security/firesight-management-center/eos-eol-notice-c51-742625.htmlIt looks like Cisco soon no longer support it and it will be obsolete in July 3...
I'm trying to authenticate SSH/HTTP with kerberos on ASA 9.18(4)22Not sure if it's a license issue, i don't think so, but i also do not have security plus for this license.Not sure where to configure which protocols to use for kerberosI do have stron...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: