Activity in Security
June 11, 2024: Windows 10 version 21H2 EOL for Duo Desktop OS policy
Beginning June 11, 2024, Duo will assign end-of-life status to Windows 10, version 21H2, for operating systems policy enforced by Duo Desktop. This policy feature is available to customers on Duo Advantage and Duo Premier editions. Note that this end...
Resolved! Upgrade path for Firepower 2110
We are currently running 7.0.6.2 on the FMC and 7.0.6.2-65 on the Threat Defense units themselves (released 4-16-24). I'd like to continue to upgrade them but it looks like the next "Suggested release" is 7.2.5 released November 2023. Is it going b...
TEAP for Windows 10 using Group Policy and ISE TEAP Configuration
With Windows 10 build 2004 and ISE 2.7 Patch 2 TEAP (EAP Chaining) is now supported. It seems currently TEAP can only be configured manually for non-domain joined workstations. This is due to the TEAP option not available under the group policy confi...
Disk Space Utilization 100% for "/localdisk"
Hi,I got a SNMP alert about the disk space utilization of "/localdisk". In the report, it's saying that the utilization porcentage is at 100%. Do you know what type of file this partition contain ?
ISE profiling - DHCP probe
Hello, to profile devices via DHCP , is it enough to use the device-sensor config for it, or I still need DHCP relay config to forward DHCP packets to ISE? device-sensor alone ? or device-sensor + dhcp relay (ip helper-address) Thank you. Regards
Resolved! FTDv managed by FMC ntp issue
Hi,I'm using FTDv 7 managed by FMC v7. Logging issues are there and there is an error about FTD not synced.So, first step seems to solve the ntp issues. FMC GUI is there for ntp which I set and it seems to be ok, but I cannot find where is the ntp se...
ASA 5525-X Remote Access VPN via Dynamic DNS
Dear Guru's I am using Cisco ASA 5525-X and the Software version is 9.4(2).Device Manager version is 7.5(2).Internet is terminated on ASUS Router and WAN interface is configured via PPPoE.ASA is behind the ASUS router. (ONT -> Asus Router -> ASA 5525...
Cisco ASA S2S IKEv2 to Palo Alto Tunnel Unstable
Hi All, I've configured tunnel from Cisco Asa to Palo Alto device. The tunnel is established but then once they reached the tunnel time out and try to establish the tunnel again it, the tunnel down/unstable.This is my config for Cisco ASA: Phase 1:IK...
ASA integration with Active Directory using LDAPS
Setting up a new ASA running 9.18 and trying to tie it into AD. This is replacing an existing ASA that was previously connected to AD using LDAPS. On rhe new ASA I can do test authentication without any issue if I use port 389, but once I switch to 6...
Connecting to AnyConnect externally to internal interface
Hi all,I'm having trouble connecting to my AnyConnect VPN when connecting through an outside interface to an internal interface. I have publicly routable IPs configured on an internal interface, and want to connect using the interface address. This i...
Azure Traffic Manager Probes being dropped by ASA after upgrade
After upgrading ASA to version 9.18.4 we are seeing Azure Traffic Manager probes being dropped (or discarded). In the logs we see 'TCP access denied by ACL from <traffic manager IP> to Outside Interface /443' It works fine when reverting back to 9.16...
FMC AD Join test failed
Hello everyone i want to configure identity policy on FMC with Active Directory Kerberos, on guide written The Realm you select must be configured with an AD Join Username and AD Join Password to perform Kerberos captive portal active authentication....
Resolved! upgrade process of firepower 2130
hello We have a old fire power that I have no idea how to upgrade. The actual device is a Cisco Firepower 2130 Threat Defense (77) Version 7.0.4 . Cisco Adaptive Security Appliance Software Version 9.16(3)18. and we have a FMC that is Cisco Firepower...
Need allow Webserver App to Communicate with Google reCaptcha
Dear Community,I am running Cisco ASA 9.8. I have an app server sitting in the DM Zone that needs to be authenticated with Google Service (reCAPTCHA) only, but I am not allowing the internet service, not the application server. I have tried to apply ...
CISCO firepower 1140 Local CA Server
hi,i'm trying to enable local CA server on cisco firepower 1140, there is option to enable it using ASDM, but I get error.I tried CLI, and there is no command 'crypto ca sever' in config mode. Does it mean that this device does not have this function...
| User | Helpful Count |
|---|---|
| 60 | |
| 50 | |
| 40 | |
| 31 | |
| 26 |
