cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1325
Views
0
Helpful
2
Replies

Configuring Threat Centric NAC to scan AnyConnect VPN Endpoints

RKilroy
Level 1
Level 1

Hi,

 

How can TC-NAC be configured to scan AnyConnect Endpoints as they join VPN?  I'm not getting an internal IP address for the endpoint in the RADIUS Live Logs (only the public IP).  I've got TC-NAC scans working on wireless endpoints as they join the 8021X WLAN but want the same thing for VPN endpoints.

 

Thanks,

  - Rit -

1 Accepted Solution

Accepted Solutions

Please call TAC to collect the necessary details to troubleshoot the problem on VPN, AMP, and/or ISE.

You have not provided any explanations of what you have tried or any troubleshooting details per How to Ask The Community for Help to know where the problem might be.

 

View solution in original post

2 Replies 2

RKilroy
Level 1
Level 1

Here's an update.  I was able to get TC-NAC to work after enabling RADIUS Accounting on the ASA but the results are sporadic.  The scans seem to kick-off randomly.  So the scanning itself does work I just need help on triggering it.

 

Thanks,

  - Rit -

Please call TAC to collect the necessary details to troubleshoot the problem on VPN, AMP, and/or ISE.

You have not provided any explanations of what you have tried or any troubleshooting details per How to Ask The Community for Help to know where the problem might be.