We are using AnyConnect AlwaysOn with certicate auth.
When PCs are stolen (it happens) - I would like to terminate the specific PC based on certicate name or PC name.
In the log, it looks like the PC-name comes in as Username
"Group <RemoteAccess-Cert-GrpPolicy> User <VK32851.domain.name>"
Can I just create a DAP where I terminate on Username?