cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
404
Views
0
Helpful
1
Replies
Cisco Employee

ISE 2.6 Posture McAfee Automatically remediation

Hi Experts:

 

I'd like to seek your help about ISE McAfee automatically remediation.

I want to check the mcafee definition version and automatically remediate the definition version by using anyconnect posture, after configuration in ISE, I rollback the mcafee content version (on McAfee agent, I can use a button called "Roll back AMcore content") to 8404 and today the latest content version is 8410.

I find the anyconnect is able to find the mcafee definition version is not up-to-date and the remediation will start normally, but the remediation cannot trigger the mcafee agent to update the definition version, after remediation, the definition version is still 8404 (remediation time is 30 minutes), I'd like to now whether the anyconnect remediation can trigger the mcafee agent for updating, I cannot check any progress from mcafee agent.

And I'm sure whether my test approach is correct, if not correct, could you please share me how to test the mcafee definition automatcally remediation?

 

Thanks a lot for your reply

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Cisco Employee

Re: ISE 2.6 Posture McAfee Automatically remediation

I am looking at the compatibility guide
https://www.cisco.com/c/en/us/support/security/identity-services-engine/products-device-support-tables-list.html
under
https://www.cisco.com/c/en/us/td/docs/security/ise/anyconnect_support_chart/Cisco_AnyConnect_ISE_Posture_Win_Support_Charts_for_Compliance_Module_4_3_795_6145.html
i see the live update column for mcaffee is enabled. I don't know what product you have but likely its to be supported. I would recommend working through the TAC and debugging what is happening
1 REPLY 1
Highlighted
Cisco Employee

Re: ISE 2.6 Posture McAfee Automatically remediation

I am looking at the compatibility guide
https://www.cisco.com/c/en/us/support/security/identity-services-engine/products-device-support-tables-list.html
under
https://www.cisco.com/c/en/us/td/docs/security/ise/anyconnect_support_chart/Cisco_AnyConnect_ISE_Posture_Win_Support_Charts_for_Compliance_Module_4_3_795_6145.html
i see the live update column for mcaffee is enabled. I don't know what product you have but likely its to be supported. I would recommend working through the TAC and debugging what is happening