After upgrading Cisco ASA code from 9.1.7 to 9.7.1 Cisco IP Phone enabled for Anyconnect VPN functionality failed to establish SSL VPN tunnel. Anyconnect client from workstation worked fine. ASDM reflected AES-GCM-256 Encryption and some one-way traffic. To get better understanding of this issue enable proper logging. logging class auth …
Blog Posts
I spent a few days working through different issues while trying to setup VPN on Avaya IP Phone with Certificate Authentication using Cisco ASA and Microsoft Certificate Authority (CA) with SCEP. I found multiple (1,2,3) Avaya configuration guides with incomplete or missing information and a couple of support articles which …
I’ll briefly touch on FTD Active/Standby setup as it greatly overlaps with the standard ASA Active/Standby configuration. For any Clustering related configuration check this link. Once both devices are individually added to FMC as described here you will need to create High Availability Pair under Devices > Add… > Add …
While setting up a new Cisco Identity Services Engine (ISE) instance I came across this error: Groups fetch failed : Insufficient permissions to retrieve groups. Issue was intermittent and only domain admins were able to retrieve groups successfully. I went through all the steps described in this Q&A article but …
One day FirePOWER IPS alerts went quiet for some time and I got concerned if IPS engine or my reporting tool were malfunctioning. I started looking online for a quick way to check it but surprisingly did not find anything useful. I needed something simple and quick. I did not …