You are here
SEC0389 - Firepower 7.0 SGT (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through Security Group Tag (SGT) matching in Access Control Policy on Cisco Firepower 7.0. We will leverage an existing ISE integration and perform traffic matching using two methods: Source inline SGT, and Destination SXP mapping. This provides additional flexibility in building access control rule for an environment that has Cisco ISE.
Part 2 of this video covers Destination SGT matching
Topic:
- ISE Policy
- Switch TrustSec Configuration
- FMC ISE Integration
- Access Control Policy
- Source and Destination SGT Matching
- SXP Subscription