02-05-2018 06:59 AM
Hi,
I have a problem with my ConnectionData.xml file contents, in which it contains old PSN information. In attempts to prevent the file from containing old PSN information I placed an ACL at the L3 SVI for my clients which denys ip to old PSN servers. Thinking that if the calls from the client to the old PSN were unsuccessful, it would fail to be defined in ConnectionData.xml.
My acl is successful in is operation but ConnectionData.xml still continues to be populated with old PSN info.
Does anyone know how ConnectionData.xml is being created with it's contents?
This file is found in
C:\Users\<currentuser>\AppData\Local\Cisco\Cisco AnyConnect Secure Mobility Client\
Thanks
Solved! Go to Solution.
02-05-2018 12:52 PM
Hi Michael,
Connectiondata.xml file has last contacted PSN information. It is not intended to be edited.
If you want the discovery to work in your network there are other methods to use such as Discovery Host. ISE 2.2 introduced a call home that can be configured in ISE.
Please see https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html#anc6
That speaks in detail about the posture flow pre-ISE 2.2 and post ISE 2.2.
-Krishnan
02-05-2018 12:52 PM
Hi Michael,
Connectiondata.xml file has last contacted PSN information. It is not intended to be edited.
If you want the discovery to work in your network there are other methods to use such as Discovery Host. ISE 2.2 introduced a call home that can be configured in ISE.
Please see https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html#anc6
That speaks in detail about the posture flow pre-ISE 2.2 and post ISE 2.2.
-Krishnan
02-06-2018 05:12 AM
Understood, I've been through this document extensively and do define DH in my posture profile for clients, yet old PSN information continues to be defined in ConnectionData.xml.
Thanks for now.. I'll continue to search for answers.
04-03-2020 08:12 AM
Did you ever find a resolution to the old PSN data being in COnnectionData.xml? I'm having the same issue and not sure where it's coming from. Old data shown along with new even after I delete the file from the client and it gets recreated on next connect.
04-30-2021 04:28 PM
You have to delete the static file entry under user profile App Data and also update the Posture Module.
Please refer the below link.
https://apronets.com/2018/02/15/ise-posture-troubleshooting/
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide