Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
774
Views
0
Helpful
0
Replies

Device Unique ID on ASA vs BIOS ID, corporate deployment

cisartomas
Level 1
Level 1

‎02-22-2016 03:01 AM

Hi,

we are using for the VPN access the ability of HostScan to gather the BIOS ID. It works. Only the allowed PC's BIOS ID are able to connect to the ASA. But some of the new laptops with UEFI bios does not return any value for BIOS ID option.

Some of the manufactures did not set the value and on the some UEFI bios the Hostscan (BIOS ID ATTRIBUTE) does not worked at all.

 

We would like to change to something else, what the every machine have. And that is Device-unique-ID. But my question is - how to retrieve the ID from every computer before the computer is first seen on the ASA ? There is no possibility in the enterprise environment to first connect the PC and then debug on ASA and write the number into the policy (hundreds of VPN clients). In documentation for the Anyconnect 4.2 is written some information about how to gather BIOS ID on Win/Linux/MAC.  But the is no written HOW the anyconnect /hostscan retrieve the device unigue id from the endpoint,or how to retrieve them before user will connect to the ASA. I found something for Android, but not for the others OS.

Do you have some similar experience?

 

Tomas Cisar

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents