09-28-2021 12:47 PM
I would like to characterize the machines that are currently attaching to AnyConnect. Is there any way on the ASA that I can see what OS a user is using? Or if they have AV or Malware protection? Or what model of hardware?
Solved! Go to Solution.
09-28-2021 12:56 PM - edited 09-28-2021 12:58 PM
@CiscoMedMed the best way would be if you used ISE Posture, this will collect endpoint attributes such as OS and installed applications on a per endpoint basis and run reports.
You could use ASA DAP (Dynamic Application Policies) which you scan and permit access depending on install application (i.e. AV) or OS, but I'm not aware of an obvious way to report on this (unlike if using ISE). You may be able to filter on DAP specific syslog messages and send these to a syslog server.
09-28-2021 12:56 PM - edited 09-28-2021 12:58 PM
@CiscoMedMed the best way would be if you used ISE Posture, this will collect endpoint attributes such as OS and installed applications on a per endpoint basis and run reports.
You could use ASA DAP (Dynamic Application Policies) which you scan and permit access depending on install application (i.e. AV) or OS, but I'm not aware of an obvious way to report on this (unlike if using ISE). You may be able to filter on DAP specific syslog messages and send these to a syslog server.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide