Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
518
Views
0
Helpful
1
Replies

Posture to check DNS and proxy settings

Go to solution
ozgguler
Cisco Employee
Cisco Employee

‎01-09-2018 10:05 PM

Can we check client's DNS and proxy settings with NAC agent or Anyconnect, and decide to allow the client if these settings are configured as compliant to corporate policy? If not, redirect to a page which says uncompliant DNS and proxy settings are being used.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎01-10-2018 04:16 AM

You might be able to do this with a registry check, you would have to validate this in a lab setup

Upon failure you could then throw up a remediation message with AnyConnect telling them they are blocked because of this

You can redirect them on non compliance to an manual noted html page in ISE 2.2 and higher stating they are non compliant however there is no way in authorization rules to say if you fail posture rule x then redirect to html page x for message x

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎01-10-2018 04:16 AM

You might be able to do this with a registry check, you would have to validate this in a lab setup

Upon failure you could then throw up a remediation message with AnyConnect telling them they are blocked because of this

You can redirect them on non compliance to an manual noted html page in ISE 2.2 and higher stating they are non compliant however there is no way in authorization rules to say if you fail posture rule x then redirect to html page x for message x

0 Helpful
Customers Also Viewed These Support Documents