cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

648
Views
5
Helpful
1
Replies
scamarda
Cisco Employee

AnyConnect/ISE UDID for Quarantine Verification

The UDI function of AnyConnect 4.7 / ISE 2.6 mentions the UDI is shared among all AC modules and is used for ISE Posture

 

...When AnyConnect is installed on a device, it will have its own unique identifier (UDID) shared among all modules in AnyConnect. This UDID is an identifier for the endpoint and is saved as an endpoint attribute, which ensures posture control on a specific endpoint rather than on a MAC address.

 

Can the UDI be referenced in a Quarantine scenario,  meaning the user violated policy while wired and was quarantined.  Is the UDI attribute available to quarantine when the user tries to connect via wireless?  Does UDI work for other features besides Posture?

 

Thanks.

 

Sam

 

Sam

1 REPLY 1
Timothy Abbott
Cisco Employee

No. The use of the UDID with AC requires some additional scripting for use with AD and is a posture only feature.

Regards,
-Tim
Content for Community-Ad