Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1133
Views
0
Helpful
1
Replies

Problems with AnyConnect and Cisco ISE Posture Module

Owner Technoma
Level 1
Level 1

‎05-25-2015 01:18 PM - last edited on ‎03-25-2019 05:33 PM by Community Manager

I have a Cisco AnyConnect v4.0.00061 with VPN, NAM and Posture Modules directly downloaded from Cisco ISE (v 1.3.0.876) server. When the user authenticates by AD, the AnyConnect asign an IP and the posture status is unknown and try to connect to policy server but after 30 seconds, show the
next message: "no policy server detected". But the strange thing is that, if you wait 3 minutes, the AC retry a policy server and then the posture is compliant or if you set a network repair, find the policy server and now you are compliant. Why the posture module don't find in the start of the session the policy server??
Labels:
0 Helpful
1 Reply 1

descalante2007
Level 1
Level 1

‎06-23-2015 04:30 PM

Anyconnect first search for its default Gateway through port 80. It is supposed the Access switch should intercept the http request and redirect to ISE. Can you verify that? Also you can check in the Anyconnect profile the ISE IP address should be there, by this way I would hope the anyconnect doesn't waste time searching for the Policy server

0 Helpful
Customers Also Viewed These Support Documents