09-23-2019 11:56 PM
Hi,
we use 2.3, patch 6 at the customer and the problem is following. The posture checks the update of the AM database and if it is older than 30 days, the PC should be noncompliant. The problem is that the posture updates stopped to download since 09/30/2018 and we found it out last week. It means everything was compliant all the time. Last week we fixed the updates and it has been downloading updates just fine. The problem is that the PC even with the old AM database is still compliant. When I checked the DART logs I still can see the old date - 09/30/2018, not the current one. There is a posture lease set up for 7 days. I tried to delete the endpoint from ISE and no luck.
My question is when the anyconnect will download the most current date from ISE? After the lease time? Is it possible to force it?
thank you
Solved! Go to Solution.
09-25-2019 10:17 PM
I would suggest to open a TAC case to investigate.
AFAIK deleting the endpoint will expire its posture lease immediately.
09-25-2019 10:17 PM
I would suggest to open a TAC case to investigate.
AFAIK deleting the endpoint will expire its posture lease immediately.
10-15-2019 09:11 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide