Accepted Solutions
Hello Marcos , what you need to do is to configure the remediation for anti-malware you are talking to be applied manually as the following example suggests :
Then you need to configure a requirement in the menu Work Centers> Posture > Policy Elements > Requirements from there you need to configure an anti-malware action for the condition you created to detect that the anti-malware is outdated, click in edit for any requirement and then "insert new requirement" and in remediation action select the example I posted above , for this scenario you configure to show a message to the user no compliant
Lastly you will need to enforce this requirement within a posture policy as the next example shows from Work Centers> Posture> Posture Policy
Please notice here that the remediation configured will trigger in case the user does not met the condition configured for anti-malware , hence the status of the machine will be non- compliant, you need to adjust the non-compliant status to grant the machine the access it requires to become compliant depending upon the anti-malware you are talking , also during the configuration for the remediation message you can customize and instruct the end user in how to update by himself the anti-malware to become compliant , in any case you can find more insight in this guide https://community.cisco.com/t5/security-knowledge-base/ise-posture-prescriptive-deployment-guide/ta-p/3680273 .
Rate and comment if this helped you .
Hello Marcos , what you need to do is to configure the remediation for anti-malware you are talking to be applied manually as the following example suggests :
Then you need to configure a requirement in the menu Work Centers> Posture > Policy Elements > Requirements from there you need to configure an anti-malware action for the condition you created to detect that the anti-malware is outdated, click in edit for any requirement and then "insert new requirement" and in remediation action select the example I posted above , for this scenario you configure to show a message to the user no compliant
Lastly you will need to enforce this requirement within a posture policy as the next example shows from Work Centers> Posture> Posture Policy
Please notice here that the remediation configured will trigger in case the user does not met the condition configured for anti-malware , hence the status of the machine will be non- compliant, you need to adjust the non-compliant status to grant the machine the access it requires to become compliant depending upon the anti-malware you are talking , also during the configuration for the remediation message you can customize and instruct the end user in how to update by himself the anti-malware to become compliant , in any case you can find more insight in this guide https://community.cisco.com/t5/security-knowledge-base/ise-posture-prescriptive-deployment-guide/ta-p/3680273 .
Rate and comment if this helped you .
