Cisco FirePOWER User Agent – Use With the FirePOWER Management Console
KB ID 0001179 Problem FirePOWER Management Center, will give you a wealth of information on traffic/threats etc. Usually it will tell you what IP the offenders are on, but if you want to know what a USER is doing, then that means you have to look though logs see who had what IP, at what time etc. So you can install the FirePOWER User Agent on a machine, (this can be a client machine, though I usually put it on a member server). You...
An Invalid Directory Pathname Was Passed
KB ID 0001338 Problem While attempting to delegate administration of an OU, I got this error; Delegation of Control Wizard The wizard cannot retrieve security information from the Active Directory. An invalid directory pathname was passed. Solution Took a while to figure out! The OU in question has a ‘slash’ in the name of it; Once I changed this to a hyphen, the error ceased. Related Articles, References, Credits, or...
Using LDP to Find an Objects ‘Distinguished Name’ in Active Directory
KB ID 0001337 Problem There are a few occasions when you need to know an objects ‘Distinguished Name’ (DN). For me it’s usually when I’ve got a device that needs to do LDAP/LDAPS lookups, (RSA Appliance, Netscaler, Cisco FirePOWER, etc). Today someone needed to ‘bind’ a Checkpoint firewall to Active Directory, and asked me to create user, and give them the DN and password. I’ve mentioned...
Cisco FirePOWER Management Center Appliance – Allowing Domain Authentication
KB ID 0001117 Problem Once deployed, authentication is handled by the appliances own internal user database, in larger organisations this is a little impractical. So the ability to create an Active Directory Group, and delegate access to Firesight to members of that group is a little more versatile. Solution I’m making the assumption that the appliance does not already have external authentication setup at all, so I’ll...
Windows – A Delegation For This DNS Server Cannot Be Created
KB ID 0001287 Problem When promoting a server to be a domain controller, you might see the following error, “A delegation for this DNS server cannont be created because the authoritative parent zone cannot be found or it does not run Windows DNS server. If you are intergrating with an existing DNS infrastructure, you should manually create a delegation to this DNS server in the parent zone to ensure reliable name resolution from...