I am working with one of the Banks in India. They are running dot1x and posture on windows endpoints and IP Phones are getting authenticated using MAB. Edge switches are not PoE and IP Phones get power through power adapter. We are facing challenge in scenario where system is connected behind IP Phone.
When I remove machine cable from IP Phone, posture works fine and machine becomes compliant.
When I remove switch cable from IP Phone, IP phone network gets disconnected however IP Phone stays powered on as it is using external power. Machine network stays also connected and posture status on module does not get changed. Now when I plug the switch cable again in IP Phone, both phone and Machine get authenticated however posture module will not able to detect the network change. I tried enabling VLAN detection, periodic probing however it did not work
We are using following AnyConnect 4.4.04030 and compliance module 3611098.2
I am seeking your guidance for next course of action