cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
12238
Views
0
Helpful
1
Replies

Anyconnect not performing system scan when switching from WLAN to LAN

Raffael
Level 1
Level 1

Hey there,

I am using anyconnect 4.4.243.0 and I'm just facing a problem as I want my mobile device (e.g. windows 7 Laptop) to be able to switch from LAN to WLAN and back, thus requiring a system scan on every ne connection.

When I initially connect to LAN everything works fine. Machine and user authentication, compliance check, comliance, access permitted. Switching to WLAN still the same. Changing to wireless adapter, performing new system scan.... everything ok.

The problem appears as I am then trying to plug in the LAN cable again, forcing the laptop to authenticate, but unfortunately the Laptop is not starting the system scan. As a result the Laptop is stuck in Compliance-Pending state according to the ISE whereas the anyconnect client shows that it is compliant.

Is there a way to force a system rescan or to force a scan in this situation?

Or am I missing something else here?

Thanks so far

Regards

Raffael

1 Reply 1

Raffael
Level 1
Level 1

Hi there,

just wanted to present the solution. The problem occured because the WLAN and the LAN were in the same network thus using the same default gateway. As the ISE posture is starting the system scan when it identifies a default gateway change, it wasn't triggered in this case.

It did so when changing from LAN to WLAN because the network went down for a moment, flushing the default gw and reconfiguring it when it connected to the WLAN.

Regards

Raffael