Meraki

Community

About molan

Re: MX Malware Blocking

by in Security & SD-WAN
‎Apr 13 2023 8:42 AM
‎Apr 13 2023 8:42 AM
Ya looking at the timeline in my security tools on one of the devices supposedly affected there is nothing going on except for attempts at windows updates.     so unless MS is compromised this is almost certainly a false positive  ... View more

Re: Cisco AnyConnect Auto Login

by in Security & SD-WAN
‎Mar 15 2022 1:07 PM
3 Kudos
‎Mar 15 2022 1:07 PM
3 Kudos
https://documentation.meraki.com/MX/AnyConnect_on_the_MX_Appliance/Authentication#Certificate-based_authentication       Please note that AnyConnect on the MX does not support certificate-only authentication at this time. Authenticating users must input credentials once certificate authentication succeeds. If certificate authentication fails, the AnyConnect client will report certificate validation failure.        is this incorrect?  because it looks like certificates don't solve the issue ... View more

Re: Cisco AnyConnect Auto Login

by in Security & SD-WAN
‎Mar 15 2022 1:02 PM
‎Mar 15 2022 1:02 PM
I am fine with certs if that is the answer, but it appears enabling certs in the Meraki doesn't remove the need for the users to enter credentials   ... View more

Re: Cisco AnyConnect Auto Login

by in Security & SD-WAN
‎Mar 15 2022 9:54 AM
‎Mar 15 2022 9:54 AM
@BaronCSE did you ever find a solution to saving the user credentials for auto logon so users are not constantly prompted? ... View more

Re: Log4J and Bash Injection attempts from Unifi Devices against the Contro...

by in Security & SD-WAN
‎Feb 22 2022 10:12 AM
‎Feb 22 2022 10:12 AM
The source devices are Access Points and Switches under the management of the Controller (Destination Device).  Not something I can scan 😞 ... View more

Re: Log4J and Bash Injection attempts from Unifi Devices against the Contro...

by in Security & SD-WAN
‎Feb 22 2022 9:09 AM
‎Feb 22 2022 9:09 AM
No,  I stated in the original question this is all internal traffic over VPN connections. there is no External Public WAN traffic allowed to the Unifi server ... View more

Re: Log4J and Bash Injection attempts from Unifi Devices against the Contro...

by in Security & SD-WAN
‎Feb 22 2022 8:50 AM
‎Feb 22 2022 8:50 AM
I have the Advanced Security License   As noted above my equipment is patched against this vulnerability.      I suspect these to be false detections but am not sure how to confirm that. ... View more

Log4J and Bash Injection attempts from Unifi Devices against the Controller

by in Security & SD-WAN
‎Feb 22 2022 7:53 AM
‎Feb 22 2022 7:53 AM
In the last week I have had Log4J and Bash Injection attempts being reported by my Meraki MX100 from my Unifi Devices (AP's and 8 Port Switches) against the Unifi Controller. The notices are coming from several sites (all traffic is private over VPN, No part of the system is exposed publicly to the internet) I suspect these are false alerts by Meraki but how can I determine that 100%? Has anyone else noticed similar events?   The Controller is a windows VM running version 6.5.55.0 which is the latest version that is patched against Log4J   ... View more
Labels:
My Top Kudoed Posts
© 2024 Cisco Systems, Inc.