I have a Cisco ASA 5515, running 9.0(2) and device manager version 7.1(2). What I am trying to accomplish is to examine SSL/AnyConnect client requests, check to see if they are from a company PC and allow them access if the are. If they are not, I would like to check for AV/Spyware/Firewall and start them/update them if the need it, or deny access if they are missing, will not start or will not update. It seems to me that I need to implement a combination of features to accomplish this. The problem I am having is understanding which pieces of which I actually need. My ASA is licensed for AnyConnect Premium and Advanced Endpoint Assessment, so I think I have everything I need except the brain power to untangle this.
Any help, such as good examples to follow would be much appreciated!