Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1672
Views
10
Helpful
2
Replies

Cisco AnyConnect 4.9 NAM AND ISE Posture only

Go to solution
ahmed_saleh
Level 1
Level 1

‎01-17-2021 11:30 PM

HI 

i am going to deploy NAM and ISE Posture for dot1x and compliance only 

is core and vpn module  required and why

1 Accepted Solution

Accepted Solutions

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎01-17-2021 11:53 PM

Hi,

Yes, you need to install core for posture to work (not for NAM). The reason
is related to the way Cisco packaged the binaries which is internal to
developers.

Here is the reference.

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/administration/guide/b_AnyConnect_Administrator_Guide_4-0/deploy-anyconnect.html

***** please remember to rate useful posts

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎01-17-2021 11:53 PM

Hi,

Yes, you need to install core for posture to work (not for NAM). The reason
is related to the way Cisco packaged the binaries which is internal to
developers.

Here is the reference.

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/administration/guide/b_AnyConnect_Administrator_Guide_4-0/deploy-anyconnect.html

***** please remember to rate useful posts
0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-18-2021 05:31 AM - edited ‎01-18-2021 05:33 AM

In additon to what @Mohammed al Baqari correctly noted, you can prevent the AnyConnect VPN tile from appearing by using a VPNDisable_ServiceProfile.xml as follows:

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect40/administration/guide/b_AnyConnect_Administrator_Guide_4-0/deploy-anyconnect.html#ID-1425-00000309

Here is the profile for reference:

<?xml version="1.0" encoding="utf-8"?>
<!--
    Cisco AnyConnect VPN Profile -

    This profile is a sample intended to allow for the disabling of VPN service
    for those installations that do not require VPN support.
-->
<AnyConnectProfile xmlns="http://schemas.xmlsoap.org/encoding/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://schemas.xmlsoap.org/encoding/ AnyConnectProfile.xsd">
  <ClientInitialization>
    <ServiceDisable>true</ServiceDisable>
  </ClientInitialization>
</AnyConnectProfile>

 

Customers Also Viewed These Support Documents