Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello, I am trying to setup a remote VPN solution using Anyconnect 4.8 with ISE for Posturing Only...we do not want ISE to authenticate the connection, just to run a Posture scan on the client and allow/reject based on a posturing policies. We will b...
Hi Mike, Success!!! Separated the Authz policy as per below and sent the Unknown and Non-compliant to a blank Authorization Profile. Shown below: Strangely, this has also now kicked in the "If User not Found" to work as expected too. I get the e...
Hi Rob, Thank you, but this doesn't work either. It gives the same result in that the client never performs a Posture scan and ends up going straight to a "Compliant" state, even though the file on C drive is missing. Kind regards,Marc
Hi Mike, I have already tried this, it doesn't work. Its how I currently have everything configured now: tunnel-group GROUP2 type remote-accesstunnel-group GROUP2general-attributes authorization-server-group ISE authorization-required <<<<< This is t...
Hi Mike, Sorry this does not resolve the problem. Flipping "If Auth Fail" to Reject just rejects the whole session, as expected, as no password information is being sent in the Radius request. I have looked at the Labminutes guides, as with many othe...
Hi Mike, I have the certificate mapping working. However the username UPN needs to be configured as a local account in ISE, if the account is not there, or there is a typo, then posturing never kicks in and the end user Anyconnect client goes straigh...
