Greetings,
Running into an odd issue and seeing if anyone has seen similar. Last week we updated the secure client to the current 5.1.6.103. We also updated the compliance module. What we started seeing is when I device was due to recheck, it was listed as unknown, but not updating. I thought it was the client, but the client shows compliant, and in ISE under posture troubleshooting shows it received a complaint, but it is not updating the endpoint.
Now, I have opened a TAC on Monday, but Takes A Century has not contacted me really except to ask when I'm free and never following through so I've been trying/testing on our own.
I have tried to update to the current compliance that came out on the 15th to no avail. I've recreated the profile if there was new data, we have tried uninstalling, deleting anything left in the programdata folder and reinstalling and this is hot or miss. The only workaround that has reliably worked is to delete the endpoint and let it recreate it in the database. The issue right now is our recheck is 7 days so I don't know if it's bad data in the DB and will be good, or if it'll start to recur next week.
The downside is I don't want to roll back as my security group was whining on the vulnerability on the 5.0 version.
Just seeing if anyone has any idea of something to try.
Note, we are on ISE 3.1, was on patch 7 but updated to patch 9 last weekend and no change.