Hello! Appreciate this series of videos! I do have a question that doesn't seem to be covered. On our FW, we have multiple Connection Profiles with associated Group Policies. We'd like to be able to control access so that, for example, a user that is a member of a particular AD group can ONLY log in to a particular Connection Profile on the FW. (Or possibly more than one. (depending on how many AD groups they are members of....) The point is that if a user is a member of Groups A and B (but not C) within AD, then on the FW they'll be able to connect on VPN to GRoups A and B, but not C. Is one or more of these flows best for that requirement? If more than one, which would you recommend as being best for not losing other capabilities (e.g., HA)? I am considering implementing ISE (instead of our current NPS), and wondering how best to implement it. Thank you!

We are using cisco Umbrella in our environment. And I decided to share you some questions I have in mind Now, In the Umbrella Dashboard there are two tabs , one is called External Domains , which inspects the DNS traffic for the clients going to the listed domain and DO NOT inspect web traffic We add domains for websites that drops http/s connections from a proxy , somehow they detect it We also have another list called selective decryption list , the inspects DNS traffic , also web traffic , BUT DO NOT PERFORM deep inspection because the server somehow knows that the traffic is being read by an intermediate which is the Umbrella proxy. My question is , what if a user faced an issue with a domain or website because of Umbrella, how I can know where to add it first ? Any browser error indicates the cause? Thanks for the great content!

Hey! Im quite done with my security just gonna get done with ISE in a couple of days, what software are you using here? Im on eve-ng, i wanted to ask which one are you using?

First of thanks for sharing such a good video. I have found only 3 videos on NGIPS. Is there any other videos related with Cisco NGIPS or not? Regards

This is a great set of videos. Best ones on the topic. How would you handle your internal and external domains being the same? I can't find an answer to this. Our vendor changed networks and the proxy's public IP and now the website shows insecure. I've already had Cisco tell me that it's configured correctly. Is it because they're using the shortened domain version on the website?

No one link works get message: We couldn't find the resource you're looking for. The course you're looking for may already be retired or obsolete. Try a new search or view available content for a subscription homepage. Go home

I have just passed the CC exam. Your video helped me a lot, followed the information you have provided. I have collected the most important questions from my preparation and created a video series on the CC exam with important questions here: kzbin.info/www/bejne/l5infIGmrt-sj8k

it gives me error and does not like anything in the code

why da hell will you get this if Microsoft have it all by there license

Thanks, this work to me

Everything will be more expensive this way including plumbers,electrician,taxi,etc. They will have to put this expense on your bill. A flat rate for vehicles with £0 road tax would work better.

Why was authentication failing even with 'open authentication' configured for that switchport?

Video quality is not so good

Studying on the CCNP security , this series is a banger , can't thank you enough for this you are a legend. btw , I'm thinking on obtaining the CCNP ISE , is it covered here ? and what do you think of the specialization? Again , you are a living legend

What if i have two ISE nodes setup, do i need to integrate both to Azure AD ?

Congratulations bro 🎉🎉

Thanks 👍

Question: I have 2 VA's that were being used with a dashboard with an existing ISP. Since then, we have gone with a new ISP and part of the package of using it, we get Umbrella. With that being said, the old dashboard is no longer available. The new dashboard did not automatically populate / show the existing VA's even though they are working just fine. How do I get these existing VA's that were in the old dashboard (no longer available) to show in the new dashboard? Do they need to be re-registered or??? I appreciate any insight you can give me in advance. Thanks.

Can't you federate directly to Duo?

Nonsense the public transport it’s already overcrowded, this will only decrease the quality average life of the people ! And talking about funding if the government cared ,thy wouldn’t be sending money abroad to support wars and would instead focus on our country and our problems . Thoughts this was the whole point in the nonsense of leaving eu and making my shopping go from 250£ to 600£ 👏🏽

This is informative. Thank you.

Yes my brother. That really helped. liked and subscribed

I won't be paying per mile I'll just take the plate off my bike

Do you have the asa 9.0(4) image

This tool has now been updated and includes 3 different options now.

Looks like she needs the exercise

Perfect worked for me on esxi 8.0. Thanks a LOT.

You're the master

Thanks for sharing as always and welcome back!!!

Tax the drivers of the Q5's and X5's etc a fortune and make driving one up in a Chelsea tractor a premium cost.

I already pay per mile it’s called fuel duty. The more you drive the more you will pay. I will not comply to this law it’s inhumane.

More ways of scamming drivers out of our hard earned money!

Only hits the poor though. Rich will just keep driving.

So I gotta pay mandatory insurance, road tax, mot fees & this? I’m better off getting the bus

Pay per mile? Mate- that’s petrol. STFU with this.

These "schemes" are not only unnecessary, they have virtually no support. Essentialy poorest are hardest hit....again

brilliant... 👍👍

I dont have that cover thing for my Max hero 8. What Do I have to do?

Hello Kelvin My name is Joseph Cooper I wanted to know how to I go about restricting Remote vpn client user to only access a specific server on the DMZ. They are successfully connect to the vpn but I want to limit 1 server to one client and not the entire subnet.

Would an older CISSP book covering the exam in 2021 or 2022 help? I have some free audiobook options for those.

Nice

We currently have a multi tenant setup where our logins have multiple organisations underneath. How does this SSO translate to accounts below our master account?

Google

Google

under external authentication will it show two profiles

Great explanation, I was having trouble with the zones but you clarified it as a pro. Thx

Writing next week, keeping fingers crossed.

Great video, thanks! I have gone through this setup but on the latest SFMC and FTD versions (7.3.1), same steps but interface is different. I got it to work as per your video but the BVI needs an IP in the same range, taking this away stops the bridging. I am looking for a solution where the outside network IP will change (its a mobile office), so was hoping to not have to reconfigure FTD each time IP/site changes. cheers

Excellent Video!

Thank you so much, right to the point. This is going to help me soo much.