Cisco client used is AnyConnect Secure Mobility Client 3.0.
I read in another thread that personal use home AV such as AVG and Microsoft Security Essentials update to new version numbers on a regular basis and then fail to be recognized when prelogin checks are done prior to VPN connection.
Is there any way to set up the ASA so that if it does not recognize the version of AV installed, (becuase it is a new version not in the CDS database etc) that, instead of rejecting the connection completely, it will give some limited access such as only network access to use the Remote Desktop Client protocol and/or access Intranet web sites through the browser?
What other solutions do others use? Not check AV version? Allow home pc users to install Corporate AV on home PCs? Not allow home pc user to connect at all?