I’ve discovered this problem today after several months of the system being in production without any issues (other than the one in this post). All of a sudden rules linked to user authentication stopped working. I immediately checked AD Agent for health and all was well. Below is what appeared …
Tag: Troubleshooting
Recently I came across this issue and decided to write a quick post on it. Cisco Firepower User Agent stopped sending authentication logs to FMC and rules based on user id started failing. Looking at the Windows and Agent logs I discovered this error “A call to SSPI failed, see …
Recently I setup a PoC for remote users with Anyconnect client and OpenDNS. The idea is to control DNS queries on split tunnel RA VPN connection based on organization’s acceptable use policies and to protect from malicious threats on the Internet. I went with OpenDNS Virtual Appliance deployment option to …
When you first start working with Cisco Firepower Management Console you may be overwhelmed because of so many screens, graphs, tables, and tabs. Today I came across one simple task where the site was blocked with HTTP response page, but website category was allowed. With one block page for all, …
Recently due to several issues I had with Sourcefire 6.0 code, I went through downgrade exercise taking it back down to version 5.4. With Sourcefire, there is no simple way to roll back from one version to another. Configuration backup helps with Defense Center however Sensors can not be rolled back to the previous …