Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1043
Views
0
Helpful
1
Replies

Posture configuration with Aruba Controller A7220 and Cisco ISE 2.3 Patch5

Eric.NGUYEN
Level 1
Level 1

‎03-11-2019 11:55 AM

Hello,

 

I'm having some issue when trying to configure Posture on an Aruba Controller A7220 with a Cisco ISE 2.3 patch5.

Url redirection seems to be working but user got the following message on Anyconnect : no policy server found

 

I have tried to check the following URL but it is not working :

 

https://community.cisco.com/t5/security-documents/ise-third-party-nad-profiles-and-configs/ta-p/3648719

https://community.cisco.com/t5/security-documents/aruba-7005-nad-config/ta-p/3641351

 

Does anyone has an idea? I don't understand why computer isn't able to reach its policy server.

 

Regards,

Eric

0 Helpful
1 Reply 1

howon
Cisco Employee
Cisco Employee

‎03-13-2019 03:33 PM

AnyConnect posture discovery uses same method as CWA (Central WebAuth) for finding the PSN. For test when in redirected state, if you open web browser do you get redirected to client provisioning page? If this simple test fails then AnyConnect will not be able to find the PSN as well.

Alternatively, ISE 2.2 & AC4.4 can be configured to find PSN without relying on URL-redirect. See following link for more information:

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html

0 Helpful
Customers Also Viewed These Support Documents