About marc.walker

marc.walker · 06-25-2020

Hello, I am trying to setup a remote VPN solution using Anyconnect 4.8 with ISE for Posturing Only...we do not want ISE to authenticate the connection, just to run a Posture scan on the client and allow/reject based on a posturing policies. We will b...

marc.walker · 06-30-2020

Hi Mike, Success!!! Separated the Authz policy as per below and sent the Unknown and Non-compliant to a blank Authorization Profile. Shown below: Strangely, this has also now kicked in the "If User not Found" to work as expected too. I get the e...

marc.walker · 06-29-2020

Hi Rob, Thank you, but this doesn't work either. It gives the same result in that the client never performs a Posture scan and ends up going straight to a "Compliant" state, even though the file on C drive is missing. Kind regards,Marc

marc.walker · 06-29-2020

Hi Mike, I have already tried this, it doesn't work. Its how I currently have everything configured now: tunnel-group GROUP2 type remote-accesstunnel-group GROUP2general-attributes authorization-server-group ISE authorization-required <<<<< This is t...

marc.walker · 06-29-2020

Hi Mike, Sorry this does not resolve the problem. Flipping "If Auth Fail" to Reject just rejects the whole session, as expected, as no password information is being sent in the Radius request. I have looked at the Labminutes guides, as with many othe...

marc.walker · 06-26-2020

Hi Mike, I have the certificate mapping working. However the username UPN needs to be configured as a local account in ISE, if the account is not there, or there is a typo, then posturing never kicks in and the end user Anyconnect client goes straigh...

Member Since	‎10-17-2005 12:59 AM
Date Last Visited	‎02-22-2023 12:01 AM
Posts	10

User Statistics

User Activity

VPN Authentication using Certificates Only, with ISE Posturing

Re: VPN Authentication using Certificates Only, with ISE Posturing

Re: VPN Authentication using Certificates Only, with ISE Posturing

Re: VPN Authentication using Certificates Only, with ISE Posturing

Re: VPN Authentication using Certificates Only, with ISE Posturing

Re: VPN Authentication using Certificates Only, with ISE Posturing