You are here
SEC0229 - ASA Firepower 6.0 Certificate-Based Access Control (Part 1)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video looks at additional features on Cisco Firepower 6.0 SSL policy that can be used to implement access control. We will explore various way to perform traffic matching based on certificate attributed including self-signed certificate, expired certificate, certificate common name, and allowed cipher suites. We will also validate our configuration with some testing.
Part 1 of this video covers SSL policy configuration
Topic:
- Self-Signed Certificate Matching
- Expired Certificate Matching
- Common Name Matching
- Cipher Suite Matching
- Certificate-Based Exemption