Cisco CESA NVM Configuration

Cisco Endpoint Security Analytics Configuration (CESA) earlier also known as NVM (Network visibility module) provides information about an endpoint to a central flow collector. In this post we will learn how to configure the CESA module to send the flow data to the flow collectors like Cisco secure network analytics (Stealth watch). Cisco NVM configuration … Read more

Cisco ISE deployment

Cisco Identity Services Engine (ISE) is a network security policy management platform. It can act as RADIUS, TACACS+ server and have various features like 802.1x, MAB, Guest, Profiling, Posture, BYOD etc. There are various ways for Cisco ISE deployment. There are basically 4 services ISE have. The services are also know as persona. 1> PAN … Read more

Wired Auto config Windows

Wired auto config need to be configured on windows to enable 802.1x services on wired interface. The configuration can be configured locally on a system and if its a domain joined machine it can be configured using GPO. In this post we will learn local configuration of the wired auto config. Window Machine wired auto … Read more

FileZilla FTP server configuration

FTP server is required for various purpose by administrators, users, it may be needed for file backup, restoration of any configuration of a device. One of the opensource FTP server is Filezilla, It offers client and server. In this post we will learn configuration of Filezilla FTP Server. Note: If IIS FTP services are running … Read more

How to enroll Certificate using GPO automatically

In this post we will learn on how to configure GPO to enroll certificate automatically. We will configure GPO in such a way that all domain joined machines will have an unique certificate which can be used for different purpose. The pushed certificate can be used for 802.1x authentication for wired or wireless connections, It … Read more

Cisco ISE (3.3) integration with Active directory

Cisco ISE (Identity Services Engine) 3.3 have new look and feel however underlying concept remains the same. Cisco ISE can be integrated with Active directory to authenticate users, domain joined machines for machine authentication. We can also pull groups created on active directory. The group can be used in access control policies to provide the … Read more

MicroSegmentation configuration with Cisco secure workload

Microsegmentation is a network security technique which helps in dividing a data center into logically small cell containing a workload (A server). Security policies can be configured around a particular workload. With the help of micro-segmentation we allow only the required traffic needed by business and block rest of the traffic. Cisco have a Micro-segmentation … Read more

Understand ntpq command output

NTP (network time protocol) is a protocol which is used to synchronize time on computers, devices. In operating system like ubuntu we can use ntpq to synchronize the time. In this post we will understand in detailed output of ntpq command. NTP configuration is kept under file /etc/ntp.conf file. We will get below kind of … Read more