cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1474
Views
0
Helpful
2
Replies

ISE Threat-Centric NAC (TC-NAC) with Nexpose for VPN posture users

musultan
Cisco Employee
Cisco Employee

My Customer is implementing ISE with Nexpose but testing with VPN posture users. 

 

We are following this document.

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/200974-Configure-ISE-2-2-Threat-Centric-NAC-TC.html

 

Why I am asking because in VPN posture, we don’t get the mac-address but in this flow, we need this information. Refer the flow in the document.

 

For example: MNT node submits SCAN to TC-NAC node (using Admin WebApp) using this data:
- MAC Address
- IP Address
- Scan Interval
- Periodic Scan Enabled 
- Originating PSN

 

Will this flow work ?

or What is the alternative solution?

 

Please advise.

 

2 Replies 2

musultan
Cisco Employee
Cisco Employee

any comment folks...

 

Will this flow work with VPN posture or What is the alternative solution?

We're running into this as well.

ISE 2.4, TC-NAC, Rapid 7, VPN + Posture.
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: