Cisco Endpoint Security Analytics Configuration (CESA) earlier also known as NVM (Network visibility module) provides information about an endpoint to a central flow collector. In this post we will learn how to configure the CESA module to send the flow data to the flow collectors like Cisco secure network analytics (Stealth watch). Cisco NVM configuration … Read more
Cisco Identity Services Engine (ISE) is a network security policy management platform. It can act as RADIUS, TACACS+ server and have various features like 802.1x, MAB, Guest, Profiling, Posture, BYOD etc. There are various ways for Cisco ISE deployment. There are basically 4 services ISE have. The services are also know as persona. 1> PAN … Read more
Wired auto config need to be configured on windows to enable 802.1x services on wired interface. The configuration can be configured locally on a system and if its a domain joined machine it can be configured using GPO. In this post we will learn local configuration of the wired auto config. Window Machine wired auto … Read more
Network switches can be configured to authenticate users first and then access can be given to the users. This will make sure any authorized users are not getting network access. In this post we will learn configuration of Cisco switch for 802.1x authentication of users using a radius server. There are three things which need … Read more
FTP server is required for various purpose by administrators, users, it may be needed for file backup, restoration of any configuration of a device. One of the opensource FTP server is Filezilla, It offers client and server. In this post we will learn configuration of Filezilla FTP Server. Note: If IIS FTP services are running … Read more
In this post we will learn on how to configure GPO to enroll certificate automatically. We will configure GPO in such a way that all domain joined machines will have an unique certificate which can be used for different purpose. The pushed certificate can be used for 802.1x authentication for wired or wireless connections, It … Read more
Cisco ISE (Identity Services Engine) 3.3 have new look and feel however underlying concept remains the same. Cisco ISE can be integrated with Active directory to authenticate users, domain joined machines for machine authentication. We can also pull groups created on active directory. The group can be used in access control policies to provide the … Read more
Microsegmentation is a network security technique which helps in dividing a data center into logically small cell containing a workload (A server). Security policies can be configured around a particular workload. With the help of micro-segmentation we allow only the required traffic needed by business and block rest of the traffic. Cisco have a Micro-segmentation … Read more
NTP (network time protocol) is a protocol which is used to synchronize time on computers, devices. In operating system like ubuntu we can use ntpq to synchronize the time. In this post we will understand in detailed output of ntpq command. NTP configuration is kept under file /etc/ntp.conf file. We will get below kind of … Read more
Output of ls command in linux can list content of a directory. It can provide all the files present in the directory as well as all the sub-directories. In Linux everything is represented as a file. A sample output of ls -lh is given below. In this we can see there are total 4 files … Read more