Device Administration with ISE
ฝัง
- เผยแพร่เมื่อ 4 ก.ค. 2024
- Cisco Security Consulting Engineer Emmanuel Cano provides an introduction to Device Adminstration with the TACACS+ protocol in Cisco ISE.
00:00 Intro & Agenda
01:40 Role Based CLI Access (Parser View) Challenges
03:15 TACACS+ Basics : datatracker.ietf.org/doc/html...
03:55 TACACS+ vs RADIUS
06:00 Device Admin with RADIUS
08:13 Device Administration with Third Party Devices
10:32 Device Admin with TACACS+:
11:00 - Allowed Protocols
11:55 - Command Sets with Wild Cards & Regex
13:07 - Shell Profiles
14:00 Enable Device Admin & Licensing
15:48 TACACS+ ASA Config
18:28 TACACS+ IOS Config
21:47 Single Connect Mode
25:33 Device Admin with an External Proxy Server
27:24 Demo: ISE Device Admin with an External Proxy Server and Active Directory
27:27 - Active Directory
28:02 - ISE #1: Proxy Server
30:54 - ISE #2: TACACS Server, Active Directory, Command Sets, and Shell Profile
35:16 - ASA Configuration and Test
38:54 TACACS+ with Duo MFA
40:56 Demo: TACACS+ with Duo MFA
42:10 - Duo Dashboard with application Cisco ISE RADIUS
47:00 - ISE with Duo as RADIUS Token Server
49:12 - ISE Command Sets, Shell Profiles, Authorization Policy
51:08 - CSR1Kv Configuration and Test
56:53 TACACS+ with ISE and Azure AD requires Microsoft NPS to talk with Azure MFA via API
58:18 Questions - วิทยาศาสตร์และเทคโนโลยี