Beginning June 11, 2024, Duo will assign end-of-life status to Windows 10, version 21H2, for operating systems policy enforced by Duo Desktop. This policy feature is available to customers on Duo Advantage and Duo Premier editions. Note that this end...
We are currently running 7.0.6.2 on the FMC and 7.0.6.2-65 on the Threat Defense units themselves (released 4-16-24). I'd like to continue to upgrade them but it looks like the next "Suggested release" is 7.2.5 released November 2023. Is it going b...
With Windows 10 build 2004 and ISE 2.7 Patch 2 TEAP (EAP Chaining) is now supported. It seems currently TEAP can only be configured manually for non-domain joined workstations. This is due to the TEAP option not available under the group policy confi...
Hi,I got a SNMP alert about the disk space utilization of "/localdisk". In the report, it's saying that the utilization porcentage is at 100%. Do you know what type of file this partition contain ?
Hello, to profile devices via DHCP , is it enough to use the device-sensor config for it, or I still need DHCP relay config to forward DHCP packets to ISE? device-sensor alone ? or device-sensor + dhcp relay (ip helper-address) Thank you. Regards
Hi,I'm using FTDv 7 managed by FMC v7. Logging issues are there and there is an error about FTD not synced.So, first step seems to solve the ntp issues. FMC GUI is there for ntp which I set and it seems to be ok, but I cannot find where is the ntp se...
Dear Guru's I am using Cisco ASA 5525-X and the Software version is 9.4(2).Device Manager version is 7.5(2).Internet is terminated on ASUS Router and WAN interface is configured via PPPoE.ASA is behind the ASUS router. (ONT -> Asus Router -> ASA 5525...
Hi All, I've configured tunnel from Cisco Asa to Palo Alto device. The tunnel is established but then once they reached the tunnel time out and try to establish the tunnel again it, the tunnel down/unstable.This is my config for Cisco ASA: Phase 1:IK...
Setting up a new ASA running 9.18 and trying to tie it into AD. This is replacing an existing ASA that was previously connected to AD using LDAPS. On rhe new ASA I can do test authentication without any issue if I use port 389, but once I switch to 6...
Hi all,I'm having trouble connecting to my AnyConnect VPN when connecting through an outside interface to an internal interface. I have publicly routable IPs configured on an internal interface, and want to connect using the interface address. This i...
After upgrading ASA to version 9.18.4 we are seeing Azure Traffic Manager probes being dropped (or discarded). In the logs we see 'TCP access denied by ACL from <traffic manager IP> to Outside Interface /443' It works fine when reverting back to 9.16...
Hello everyone i want to configure identity policy on FMC with Active Directory Kerberos, on guide written The Realm you select must be configured with an AD Join Username and AD Join Password to perform Kerberos captive portal active authentication....
hello We have a old fire power that I have no idea how to upgrade. The actual device is a Cisco Firepower 2130 Threat Defense (77) Version 7.0.4 . Cisco Adaptive Security Appliance Software Version 9.16(3)18. and we have a FMC that is Cisco Firepower...
Dear Community,I am running Cisco ASA 9.8. I have an app server sitting in the DM Zone that needs to be authenticated with Google Service (reCAPTCHA) only, but I am not allowing the internet service, not the application server. I have tried to apply ...
hi,i'm trying to enable local CA server on cisco firepower 1140, there is option to enable it using ASDM, but I get error.I tried CLI, and there is no command 'crypto ca sever' in config mode. Does it mean that this device does not have this function...