Showing results for 
Search instead for 
Did you mean: 

Anyconnect VPN DAP issue!


Hello All,

I am configuring Anyconnect Host Scan feature, the sequence would be as follows:

1. OS Check - Windows / MAC : Any of the mentioned OS then Pass ahead to point 2

2. AV & Mail Application Check - Symantec OR MacAfee & Outlook OR Lotus Notes : Both of the OR conditions should match

There are more checks, however, I have observed that, somehow, the "OR" is not getting applied in Point 2. For e.g.;

In the Mail Application checks, the host scan checks for only one condition not both of them.

I am using the Registry Entry of those particular applications (Outlook & Lotus Notes). However, if I keep one Application (Outlook or Lotus Notes) it works fine.

Kindly help.

Thank You & Regards,

Ameya Dhage

3 Replies 3


Hello All,

Is it related to the Licence issue!

Below is the Licence detail on the ASA:

Licensed features for this platform:
Maximum Physical Interfaces       : Unlimited      perpetual
Maximum VLANs                     : 150            perpetual
Inside Hosts                      : Unlimited      perpetual
Failover                          : Active/Active  perpetual
Encryption-DES                    : Enabled        perpetual
Encryption-3DES-AES               : Enabled        perpetual
Security Contexts                 : 10             perpetual
GTP/GPRS                          : Disabled       perpetual
AnyConnect Premium Peers          : 2              perpetual
AnyConnect Essentials             : Disabled       perpetual
Other VPN Peers                   : 750            perpetual
Total VPN Peers                   : 750            perpetual
Shared License                    : Disabled       perpetual
AnyConnect for Mobile             : Disabled       perpetual
AnyConnect for Cisco VPN Phone    : Disabled       perpetual
Advanced Endpoint Assessment      : Disabled       perpetual
UC Phone Proxy Sessions           : 2              perpetual
Total UC Proxy Sessions           : 2              perpetual
Botnet Traffic Filter             : Disabled       perpetual
Intercompany Media Engine         : Disabled       perpetual
Cluster                           : Disabled       perpetual

This platform has an ASA 5520 VPN Plus license.

Kindly suggest!!!!!

Hello All,

We were able to solve the issue.

It seems the "Advanced Endpoint Assessment" was needed and we changed the "OR" operator with "AND".

Thank You & Regards,

Ameya Dhage

Dina Odeh


Could you send please a screen shot of your DAP configuration from ASDM 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers