I'm having an issue with a windows 7 device and 802.1x authentication only on boot. If i enable and disable the network adapter authentication succeeds and AnyConnect is able to check the machine for posture. If I don't toggle the port the device is MABd. the machine authentication happens then once the user logs in the user has to toggle his NIC.
Information:
Windows 7 SP1
All 802.1X patches installed from here: https://supportforums.cisco.com/blog/12256681/getting-past-intermittentunexplained-8021x-problems-windows-7
Using the native Windows supplicant
Set to Machine or user authentication
EAP-TLS with machine and user certificates
Troubleshooting steps:
Uninstalled JunOS pulse VPN client
tried restarting wired autoconfig service without toggling the NIC, this changes the behavior slightly but doesn't fix it completely.
Collected debugs
I collected some debugs from the 2960X running 15.2.2e6 when the machine booted up and attached them to this post