In this post you will see what could be the root cause of getting the “WARNING: The ID certificate associated with trust-point contains an Extended Key Usage (EKU) extension but without the Server Authentication purpose which is required for SSL use.” message on the ASA when you try to associate…
I was troubleshooting an issue with logging collection a couple of weeks ago between a Palo Alto PA-850 and a Panorama. The PA-850 was configured with a Log Forwarding to push its logs to Panorama, and the Panorama was configured with itself as the Collector as well as with a…
I was working the other day on a Palo Alto firewall running version 10.0.2, and all of a sudden it kicked me out and I could only see an empty login page. I could not see anything on the login page but the background image shown below. I tried to…
Recently I had ran into some issues when I was trying to update Wireshark on some workstations and servers. Specifically, the Npcap was failing during its version upgrade, and was returning an error stating that it failed to create the npcap service as shown above. Here is how to fix…
In this post I will share with you how to fix AnyConnect Management Tunnel Disconnected (connect failed) error, but before jumping in here is a quick heads up on what AnyConnect Management Tunnel is. AnyConnect Management Tunnel is a very cool feature that allows us to do some maintenance works…
This post will cover one interesting root cause of getting AnyConnect Certificate Validation Failure. I was working on setting up a Cisco AnyConnect Management Tunnel, which I will cover in another post, and for some reason when I was trying to establish AnyConnect SSL VPN from a Windows client, it…
When it comes to security, the word blacklist is always tied to something bad. However, this is not the case when we deal with health policies in Cisco FMC. FMC offers a nice feature called health monitor blacklist. This feature allows us to suppress the health alerts related to one…
In this post I will show you how easy is to use Active Directory OUs in Cisco ISE authorization rules. Although it is not very common, but there are still a lot of companies around that are using the Active Directory OUs to segregate the users in Active Directory rather…
In this post we will talk about the FTD Get Device Configuration and Push Device Configurations. These two options are available in FMC to allow replicating the configuration from one FTD appliance to another. The FTD Get Device Configuration allows us to replicate the configuration from a device to the…
I came across a weird issue with a Dell server iDrac. What I was trying to do was simply to set some email alerts but I could not make it to work. All the settings where correct, IP addressing, SMTP etc. But was still no luck. Every time I was…