Cisco Cisco Web Security Appliance S160 Guía Del Usuario
1-2
AsyncOS 8.8 for Cisco Web Security Appliances User Guide
Chapter 1 Introduction to the Product and the Release
What’s New
Requirements and Restrictions for AsyncOS 8.8
Please be aware of the following requirements and restrictions for AsyncOS 8.8:
•
AsyncOS 8.8 supports only version 1.3 of the Identity Services Engine.
What’s New in Cisco AsyncOS 8.7
Requirements and Restrictions for AsyncOS 8.7
Please be aware of the following requirements and restrictions for AsyncOS 8.7:
•
AsyncOS 8.7 supports only version 1.3 of the Identity Services Engine.
•
This release of AsyncOS does not support Connector mode; however, when operating in Connector
mode, ISE-specific options remain visible and apparently available. To reiterate, Connector mode is
not supported, and if your system is operating in that mode, you should not upgrade to this release.
mode, ISE-specific options remain visible and apparently available. To reiterate, Connector mode is
not supported, and if your system is operating in that mode, you should not upgrade to this release.
Secure ICAP
You can now secure the channel between the appliance and an external DLP
(ICAP) server.
(ICAP) server.
Support for on-premises
File Analysis
File Analysis
If you deploy a Cisco AMP Threat Grid appliance on your network, you can
analyze downloaded files for threats without sending them to the public cloud.
analyze downloaded files for threats without sending them to the public cloud.
For more information, see the “File Reputation Filtering and File Analysis”
user guide PDF.
user guide PDF.
Feature
Description
Feature
Description
ISE integration
AsyncOS can now access additional user-identity information from
an Identity Services Engine (ISE) version 1.3 server deployed in the
same network.
an Identity Services Engine (ISE) version 1.3 server deployed in the
same network.
SSL configuration
For enhanced security, you can enable and disable SSLv3 for several
services. Services with SSLv3 disabled will use TLSv1.0.
services. Services with SSLv3 disabled will use TLSv1.0.
You can enable and disable SSLv3 for Appliance Management Web User
Interface, Proxy Services (includes HTTPS Proxy and Credential
Encryption for Secure Client), Secure LDAP Services (includes
Authentication, External Authentication, SaaS SSO, and Secure Mobility),
as well as the Update Service.
Interface, Proxy Services (includes HTTPS Proxy and Credential
Encryption for Secure Client), Secure LDAP Services (includes
Authentication, External Authentication, SaaS SSO, and Secure Mobility),
as well as the Update Service.
Use the Web interface (System Administration > SSL Configuration), or the
CLI (
CLI (
sslconfig
).