05-03-2018 07:44 AM - edited 02-21-2020 10:55 AM
Hi All,
Please am having a problem where by the network setup assistant couldn't connect to the server, So it can't download the Anyconnect installation files from I.S.E server. Have configure the Anyconnect Configuration and associated it with a Client provisioning policy.
Attached below image and logs from Network Setup Assistant. Please help.
Solved! Go to Solution.
09-03-2018 01:44 AM
Hi All,
Thanks alot for the ideas, I fixed the issue. The error was as a result of a windows 7 patch. I updated the security KBs an everything worked as expected.
09-28-2018 03:20 AM
Hi Sajid,
For my lab was using win 7 professional with service park 1. Just make sure your win 7 environment is up to date. for the KB follow the below article https://community.cisco.com/t5/vpn-and-anyconnect/ise-posture-module-is-not-installed-during-posture-provision/td-p/3512829.
05-03-2018 11:17 PM
05-04-2018 01:15 AM
05-04-2018 01:25 AM
What ACL / FW rules are in place between the Client and the ISE? We need to be sure they aren't blocking traffic... Can you paste up here so we can check?
05-04-2018 01:42 AM
Hi,
The Acl between the client and ISE is here below:
Extended IP access list ACL_DEFAULT
10 permit udp any eq bootpc any eq bootps
20 permit udp any any eq domain
30 permit tcp any any eq domain
40 permit icmp any any
50 permit udp any any eq tftp
60 permit ip any host 192.168.37.28
70 deny ip any any log (3468 matches)
My Downloadable ACL,
permit udp any eq bootpc any eq bootps
permit udp any any eq 53
permit ip any host 192.168.37.28
deny ip any any log
Redirect ACL,
Extended IP access list ACL_REDIRECT
10 deny udp any eq bootpc any eq bootps
20 deny udp any any eq domain
30 deny ip any host 192.168.37.28
40 permit ip any any (223866 matches)
There is no firewall in between. The Redirection is working fine the only problem is when NSA tries to download the anyconnect.
05-04-2018 02:30 AM
Please provide me the Proxy settings from the endpoint.
05-04-2018 02:33 AM
05-04-2018 02:34 AM
proxy details from client side is:
X.X.X.X:3128
05-04-2018 03:09 AM
Please disable the proxy on the endpoint & try client provisioning.
05-04-2018 03:50 AM
Hi,
I did so and still got on to the same error. Could it be the webdeploy version am using?
05-04-2018 04:09 AM
Hi,
Below are the images of anyconnect resouces:
Anyconnect Configuration profile
05-04-2018 05:26 AM
06-22-2018 01:04 AM
Hi,
Was this ever fixed?
Thanks
09-03-2018 01:44 AM
Hi All,
Thanks alot for the ideas, I fixed the issue. The error was as a result of a windows 7 patch. I updated the security KBs an everything worked as expected.
09-28-2018 02:34 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide