Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3631
Views
0
Helpful
6
Replies

No Policy Server Detected

Go to solution
subrun.jamil
Level 1
Level 1

‎12-09-2020 05:24 PM

Hello,

 

I got one user who some times can connect to ANY CONNECT VPN and sometimes not. We are doing Posture Validation through ISE with some Approved Antimalware.

 

When user is not able to connect to the VPN , it always says "NO POLICY SERVER DETECTED" from Cisco ANYCONNECT Client. At that moment from user AC Client it does not show anything from "Security Product" tab. 1st question here when user is not able to connect from ISE is there any way to see why he is failing ?

2nd is obviously how do I resolve this  ?

 

Note that for unsuccessful attempt I do not see any log at Posture Troubleshooting Section.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
marce1000
VIP
VIP
In response to subrun.jamil

‎12-10-2020 08:54 AM

 

 - Check these info's : https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_mnt.html#wp1075206

                                   https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/215419-ise-session-management-and-posture.html

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

View solution in original post

0 Helpful
6 Replies 6

Go to solution
marce1000
VIP
VIP

‎12-10-2020 12:05 AM

 

 - Check this thread for hints :

               https://community.cisco.com/t5/network-access-control/ise-no-policy-server-detected/td-p/3883122

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
subrun.jamil
Level 1
Level 1
In response to marce1000

‎12-10-2020 05:48 AM

No , its not the same problem I have. I have the IP Addresses mentioned at Call Home List and Discovery List as well. And problem for certain people for a Specific Vendor. Rest of the other working fine.

 

Also additional question , Is there a way I can see from ISE ,  what AM , users are successfully postured with ?

0 Helpful

Go to solution
marce1000
VIP
VIP
In response to subrun.jamil

‎12-10-2020 08:54 AM

 

 - Check these info's : https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_mnt.html#wp1075206

                                   https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/215419-ise-session-management-and-posture.html

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
hslai
Cisco Employee
Cisco Employee
In response to subrun.jamil

‎12-22-2020 05:49 PM

Please do review marce1000's 2nd link -- ISE Session Management and Posture. Beyond that, please engage Cisco TAC to troubleshoot.

0 Helpful

Go to solution
thomas
Cisco Employee
Cisco Employee

‎12-14-2020 08:35 PM

Since this is the ISE forum...

Please provide information about the ISE configuration, logs, errors, and authorization profile for that endpoint's session that is not working.

Create a special rule for that one user to not require posture and see if it works then troubleshoot his posture policy from there.

0 Helpful

Go to solution
subrun.jamil
Level 1
Level 1
In response to thomas

‎12-21-2020 07:06 PM

Thomas - Liked your idea. But did not need to try that as when tried from other good machine user was able to connect so it was a Posture Complaint Issue and Confusing part is Error Message  "No Policy Server Detected Message"

0 Helpful
Customers Also Viewed These Support Documents