Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3974
Views
5
Helpful
11
Replies

ISE 2.x || Support for ISE Posture for the MAC OS X 10.14 (Mojave)

Go to solution
musultan
Cisco Employee
Cisco Employee

‎09-24-2018 09:06 PM - edited ‎09-24-2018 09:09 PM

Hi Team,

 

I am trying to find out are we supporting the ISE Posture for the MAC OS X 10.14 (Mojave)?

Mojave is just released today...

 

I can see the support on the Any-Connect side but ISE docs are not updated.

https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/compatibility/b_ise_sdt_24.html#applemacosx

 

We have tried AnyConnect 4.6.03049 and Compliance Module OSX 4.3.150.2304 and updated the Posture / Feed Services on ISE 2.3 Patch 3 Deployment.

 

We are getting the following error.

System Scan:
Failed to load compliance module
Contact your system administrator.

 

https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect46/release/notes/b_Release_Notes_AnyConnect_4_6.html#id_72149

AnyConnect 4.6.03049 New Features

This is a maintenance release that includes the following enhancements and limitations, and that resolves the defects described in AnyConnect 4.6.03049.

  • Support for macOS Mojave 10.14; however, if you are using AnyConnect 4.1 or 4.2 and upgrade to macOS 10.14, you will need to remove the AMP profile and restart.

AnyConnect Supported Operating Systems

Cisco AnyConnect Secure Mobility Client supports the following operating systems for its contained modules:

Supported Operating Systems

VPN Client

Network Access Manager

Cloud Web Security

VPN Posture (HostScan)

ISE Posture

DART

Customer Experience Feedback

Network Visibility Module

AMP Enabler

Umbrella Roaming Security
                     

macOS 10.11, 10.12, 10.13, and 10.14

Yes

No

Yes

Yes

Yes

Yes

Yes

Yes

Yes

Yes
                     

 

 Please advise.

 

1 person had this problem
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to musultan

‎09-25-2018 08:37 AM

Once support has been updated then the docs will be. The product manager is finding out this information ASAP.

View solution in original post

0 Helpful

Go to solution
kegagnon
Cisco Employee
Cisco Employee

‎09-25-2018 02:23 PM

Team,

The posture server for ISE 2.3 and lower was updated Yesterday (Monday, September 24). The posture server for ISE 2.4 will be updated by the end of the day today (Tuesday, September 25). The next time the posture server is contacted, it will update and support Mojave.

Best Regards, Kevin

View solution in original post

0 Helpful
11 Replies 11

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎09-25-2018 08:17 AM

Support is near 0 Day, will update this when we hear more.
0 Helpful

Go to solution
musultan
Cisco Employee
Cisco Employee
In response to Jason Kunst

‎09-25-2018 08:35 AM

should docs be updated about it? file a doc bug?

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to musultan

‎09-25-2018 08:37 AM

Once support has been updated then the docs will be. The product manager is finding out this information ASAP.
0 Helpful

Go to solution
kegagnon
Cisco Employee
Cisco Employee

‎09-25-2018 02:23 PM

Team,

The posture server for ISE 2.3 and lower was updated Yesterday (Monday, September 24). The posture server for ISE 2.4 will be updated by the end of the day today (Tuesday, September 25). The next time the posture server is contacted, it will update and support Mojave.

Best Regards, Kevin

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to kegagnon

‎09-26-2018 09:54 AM - edited ‎10-03-2018 11:03 AM

 

I see on 2.3 and 2.4

macosx1014.jpg

Go to solution
kev-matthews
Level 1
Level 1
In response to kegagnon

‎10-02-2018 07:36 AM

Is there a manual download available for this?

 

We're impacted by a TLS bug (CSCvk10081) which means that until we get a hotfix to allow connectivity to function again, I'm unable to retrieve any posture updates which is impacting my users who have upgraded.

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to kev-matthews

‎10-02-2018 07:48 AM

Please work through the TAC to provide a resolution to break/fix items
0 Helpful

Go to solution
kev-matthews
Level 1
Level 1
In response to Jason Kunst

‎10-04-2018 03:20 AM

I wasn't asking for a fix for the TLS issues - that's all in hand.

 

I was asking if there was a manual download (offline) update available for this as an interim measure - it wasn't listed in the TAC cases that are linked to the TLS issue - only "whitelist these URL's" which is no help if your firewalls don't support URL whitelisting and the CDN is cloud so could be a huge range of IP addresses.  Thankfully our ever helpful account team provided the link to the offline location so I can support my users again.

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to kev-matthews

‎10-04-2018 05:34 AM

It wasn’t clear what you required then

Did you use something like this?

https://community.cisco.com/t5/identity-services-engine-ise/offline-posture-update-url/td-p/3482135
0 Helpful

Go to solution
musultan
Cisco Employee
Cisco Employee
In response to Jason Kunst

‎10-09-2018 09:30 PM

Please advise the support for 2.0, 2.1 and 2.2 ?



Cisco Identity Services Engine Network Component Compatibility doc’s are not updated.
https://www.cisco.com/c/en/us/support/security/identity-services-engine/products-device-support-tables-list.html


Should we file a doc bug?

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to musultan

‎10-12-2018 06:56 AM

Yes please open the documentation bug
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents