But even after doing this, AnyConnect agent from fresh/new endpoints (having no previous records with ISE) showing no policy server detected error.
-This is normal behavior because the clients are missing the appropriate xml files that aide in how the module will work in regard to reaching out to ISE.
As soon as we start the redirection in authorization profile issue get resolved and agent started to scan and showed compliant status.
Can we know, Why in redirection less deployment we required URL redirection for onboarding the new/fresh endpoints ?
-This is because the redirection aides the client session in reaching the portal via url-redirect configured in your authz profile that is assigned to the session. Once the client reaches the portal (via redirect help) you have an assigned AnyConnect Config result that has the AnyConnect Posture profile assigned with it. At this point that profile is pushed to clients, which can be found here: C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\ISE Posture
The name of the profile I am referring to is: ISEPostureCFG.xml
IMO one option would be to configure clients pre-deployment with the respective XML file via SCCM or imaging process.
I would recommend taking a peek at the 'Compliance & Posture' section here: Cisco ISE & NAC Resources - Cisco Community
HTH!
