cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

1360
Views
0
Helpful
4
Replies
Highlighted
Beginner

ISE Client Posture Policies

                   Hi!

Anybody knows how to configure Cisco ISE Posture Policy to check windows Service Pack? For example, we need to create a policy to check if machine has a Antivirus and the last service pack installed. The policy for antivirus it's simple, but we don't know how to configure for Service Pack check.

Thanks!

2 ACCEPTED SOLUTIONS

Accepted Solutions
Highlighted
Beginner

Policy > Policy Elements > Condidtions > Posture > Registry Condition

  • pc_W7_SP0    
  • pc_W7_SP0_int
  • pc_W7_SP1   
  • pc_W7_SP1_int

Use those or duplicate them and modify as you need.


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

Highlighted

For those specifc examples, no.  They are pc_  = pre configured from Cisco.

If you want to modify them, you will need to adjust the Value to match what you need.

As always, remember that Registry Valures are CasE SenSITIve.  :-)

I find it best to export the reg key area I need and copy-paste leaving out the " Quotation marks"


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

4 REPLIES 4
Highlighted
Beginner

Policy > Policy Elements > Condidtions > Posture > Registry Condition

  • pc_W7_SP0    
  • pc_W7_SP0_int
  • pc_W7_SP1   
  • pc_W7_SP1_int

Use those or duplicate them and modify as you need.


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

Highlighted

Do we need to create the registry condition?

What is the Registry Type, Registry Root Key, Sub-key and Value Operator to check?

Thanks.

Highlighted

For those specifc examples, no.  They are pc_  = pre configured from Cisco.

If you want to modify them, you will need to adjust the Value to match what you need.

As always, remember that Registry Valures are CasE SenSITIve.  :-)

I find it best to export the reg key area I need and copy-paste leaving out the " Quotation marks"


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James

View solution in original post

Highlighted