cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
369
Views
0
Helpful
2
Replies
MS-JK
Beginner

Management VPN Tunnel feature with POSTURE

Question on the new feature in 4.6 Management VPN Tunnel. Is there anyway to integrate this with ISE Posture/Compliance module? Example - only pre-connect PC via Anyconnect Management VPN Tunnel IF that PC has latest patches. Just like you could do with user initiated VPN tunnels.

 

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Rob Ingram
VIP Mentor

Hi,
No, posture would only work when the user is connected to the VPN tunnel. Normally the mgmt tunnel would not be allowed full access anyway, so limit what it can access with a DACL.

HTH

View solution in original post

2 REPLIES 2
Rob Ingram
VIP Mentor

Hi,
No, posture would only work when the user is connected to the VPN tunnel. Normally the mgmt tunnel would not be allowed full access anyway, so limit what it can access with a DACL.

HTH

View solution in original post

Gustavo Medina
Cisco Employee

The above aswer is incorrect. Posture can work for the management-tunnel like it does for a regular connection profile.

Content for Community-Ad