Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
930
Views
0
Helpful
2
Replies

ASA 5505 and CSD Host Scan

druch
Level 1
Level 1

‎02-27-2009 12:45 PM - edited ‎02-21-2020 03:19 AM

Hello,

I'd like to use Cisco Secure Desktop to check a registry key to decide if it's a company-client (use AnyConnect client) or not (use web-portal). I'm a bit confused if it can be solved with Host Scan entry and DAP, or if also Prelogin Policies are required.

0 Helpful
2 Replies 2

bwilmoth
Level 5
Level 5

‎03-05-2009 06:47 AM

As far as I know the supported prelogin checks are IP Address (Source IP range), Certificate, Registry, File and OS.

0 Helpful

hillegas
Level 1
Level 1

‎05-04-2009 09:35 AM

You can use the Prelogin Policies to check for certs, IP addresses, reg settings, or a host file. Based on either having one or many of these checks, the user can be forced into sepcific settings with CSD (i.e. CSD or not with or without locking down printing, USB,.. access). The pre-login checks do not look for AV, personnel firewall,...

So, yes you can use the pre-login check to look for a registry key to determine if it's company compliant, and then use DAP to enforce only company-clients use AnyConnect and everyone else use webportal.

Pre-login checks ensure compliance, but DAP enforces it.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card