Cisco -

IOS-XE VPN PSK authentication using IKE ID

Post author:Admin
Post published:April 3, 2025
Post category:Cisco IOS-XE VPN
Post comments:0 Comments

When using pre-shared key (PSK) authentication on a Site-to-Site VPN using Cisco IOS-XE routers, the IP address of the egress interface is used to match the PSK and authenticate the…

ISE TrustSec using RESTAPI

Post author:Admin
Post published:January 4, 2025
Post category:Cisco ISE

By default, Cisco Identity Services Engine (ISE) uses a PAC file transmitted over RADIUS to exchange TrustSec environment data between ISE and the Network Access Devices (NADs). From ISE version…

ISE Certificate Authentication

Post author:Admin
Post published:January 2, 2025
Post category:Cisco ISE

When deploying Cisco ISE for Network Access Control using 802.1X, the most common authentication protocols used are PEAP/MSCHAPv2 or EAP-TLS, and to a lesser extent EAP-FAST and TEAP. PEAP/MSCHAPv2 is…

ISE Adaptive Network Control (ANC)

Post author:Admin
Post published:December 28, 2024
Post category:Cisco ISE

Adaptive Network Control (ANC) is a feature of Cisco Identity Services Enginer (ISE) that can be used to monitor and control network access of authenticated endpoints. With ANC you have…

MACSec switch-to-host

Post author:Admin
Post published:December 26, 2024
Post category:Cisco ISE

MACsec provides secure communication on wired networks; it encrypts each packet on the wire so that communication cannot be monitored. There are 2 deployment types:- Switch-host (user facing/downlink) MACsec or…

FTD FQDN objects

Post author:Admin
Post published:December 15, 2024
Post category:Cisco FTD

The FQDN ACL feature allows the Firepower Threat Defense (FTD) firewall to use FQDN objects in the Access Control Policies (ACP). For this functionality to work, the FTD must be…