06-29-2015 01:53 AM - edited 03-10-2019 12:27 AM
Hi all,
When an Anyconnect client 4.1.02011 tries a connection to Cisco ASA (with Host Scan 3.1.06073 installed), the McAfee VirusScan and McAfee HIPS are not detected even though they are installed on the client PC.
In order to solve the problem, client has upgraded the Host Scan version to 4.1.02011 but the Prelogin Policy pane in Secure Desktop manager menu disappeared from ASDM and all prelogin and posture checks were not performed anymore. Therefore, all Anyconnect client VPN connections are successful even though certificate, AntiVirus or HIPS are not installed in the client PC. Indeed, Dynamic Access Policies configured are not matched any more.
anyone know this issue or something might have gone wrong?
regards,
Lance
09-20-2015 07:40 AM
Hi,
The pre-login policies seem to have been depricated due to a vulnerability in the 4.x host scan versions, Seems like this feature will be coming back but there is no estimated date yet.
hope this helps.
10-10-2016 02:27 AM
Any news ? Are prelogin policies back in AC 4.3 ?
10-17-2016 02:57 AM
any news?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide