Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1028
Views
0
Helpful
3
Replies

ISE NAC Agent not detecting anything but Bitdefender, posture not working

Adam White
Level 1
Level 1

‎05-30-2018 08:01 AM - edited ‎02-21-2020 10:57 AM

Hi,

 

We are running ISE 2.2 and have moved onto the posture stage. 

The redirect works, the agent gets installed, there is some scanning done and the laptop passes compliance. 

The NAC agent only seems to pick up Windows defender, I have tried to manually copy the compliance module files into the install directory in case that was the issue, still no luck.

 

I have created a basic posture policy checking for a file, this doesnt seem to be applied either. 

 

From the end workstation I can browse to the ISE on https://myise:8905/auth/discovery 

I dont get anything but a blank page, but it looks successful. 

 

I have attached a pic of the NAC agent and what it picks up in terms of AV

 

Any idea whats wrong here?

 

Labels:
Preview file
34 KB
0 Helpful
3 Replies 3

hslai
Cisco Employee
Cisco Employee

‎06-02-2018 08:36 PM - edited ‎06-02-2018 08:39 PM

That particular screen on NAC agent is to display AV/AS info only. Please use ISE operational reports, run a Posture Assessment by Endpoint for the time interval when the endpoint was last assessed and then use the Details icon to initiate the report on Posture More Detail Assessment, which gives the details of posture policy rules used.

 

PS: End-of-Sale and End-of-Life Announcement for the Cisco NAC Agent Software says NAC agent has ended software maintenance and the application support is ending in July 31, 2018. Please start migrating to AnyConnect ISE Posture Agent or using Cisco Temporal Agent.

0 Helpful

Adam White
Level 1
Level 1
In response to hslai

‎06-04-2018 02:46 AM

Hi, 

 

Thank you for the response, it seems as if there are no endpoints appearing in the posture assessement report. 

I assume this means the agent is not able to get to the ISE even though it mentions posture succeeded. 

The ISE shows device is compliant in the report logs

0 Helpful

hslai
Cisco Employee
Cisco Employee
In response to Adam White

‎06-04-2018 04:03 AM

Try running the posture assessment report for a longer period of time. If that does not help, then it's best to open a TAC case to troubleshoot further.

 

Below showed the live logs with an endpoint going from Pending to Compliant and the blue Compliant is a hyperlink to launch a posture report that filtered on the endpoint ID.

Screen Shot 2018-06-04 at 3.59.19 AM.png

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents