cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
 
Register for the monthly ISE Webinars to learn about ISE configuration and deployment.
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

1097
Views
1
Helpful
2
Replies
Beginner

ConnectionData.xml

Hi,

I have a problem with my ConnectionData.xml file contents, in which it contains old PSN information. In attempts to prevent the file from containing old PSN information I placed an ACL at the L3 SVI for my clients which denys ip to old PSN servers. Thinking that if the calls from the client to the old PSN were unsuccessful, it would fail to be defined in ConnectionData.xml.

My acl is successful in is operation but ConnectionData.xml still continues to be populated with old PSN info.

Does anyone know how ConnectionData.xml is being created with it's contents?

This file is found in

C:\Users\<currentuser>\AppData\Local\Cisco\Cisco AnyConnect Secure Mobility Client\

Thanks

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: ConnectionData.xml

Hi Michael,

Connectiondata.xml file has last contacted PSN information. It is not intended to be edited.

If you want the discovery to work in your network there are other methods to use such as Discovery Host. ISE 2.2 introduced a call home that can be configured in ISE.

Please see https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html#anc6

That speaks in detail about the posture flow pre-ISE 2.2 and post ISE 2.2.

-Krishnan

2 REPLIES 2
Cisco Employee

Re: ConnectionData.xml

Hi Michael,

Connectiondata.xml file has last contacted PSN information. It is not intended to be edited.

If you want the discovery to work in your network there are other methods to use such as Discovery Host. ISE 2.2 introduced a call home that can be configured in ISE.

Please see https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html#anc6

That speaks in detail about the posture flow pre-ISE 2.2 and post ISE 2.2.

-Krishnan

Highlighted
Beginner

Re: ConnectionData.xml

Understood, I've been through this document extensively and do define DH in my posture profile for clients, yet old PSN information continues to be defined in ConnectionData.xml.

Thanks for now.. I'll continue to search for answers.