Hi,

It seems you have prelogin polices defined on the ASA whose check the end client is failing.

Please check those settings.

http://www.cisco.com/c/en/us/td/docs/security/csd/csd34/configuration/guide/csd34cfg/CSDpretu.html

This document will provided the link to implement it in your case reverse engineer it.

You can also obtain Cscan logs from the end client machine and see where it is failing.

Path on windows 7

C:\Users\username\AppData\Local\Cisco\Cisco HostScan\log

I have the same issue, but may have extenuating circumstances:

I have a Lenovo Laptop running LINUX with a Windows 7 KVM running inside it.

I connect to a customers system and until about 3 months ago it was working just fine, no issues at all, but then the customer upgrade their AnyConnect software and ever since then I am getting the error "Posture Assessment Failed: Hostscan CSD prelogin verification failed."

The customer says the rules require a valid OS (Windows 7 is valid the customer says), that the system must be running a valid Anti-Virus (I am running Symantec, and it is up to date,  which the customer says), and you must be running a firewall (I am, it is being managed by the Symantec Antivirus, and that too is valid according to the customer).

What I do not understand, is that no-one seems to be able to tell me what is failing.

Also in an above comment about where the log for this is, I do not see even the path that is mentioned (You can also obtain Cscan logs from the end client machine and see where it is failing. Path on windows 7 C:\Users\username\AppData\Local\Cisco\Cisco HostScan\log)

I am not sure how much of this is due to the LINUX/WINDOWS 7 KVM but I really need some help solving this issue.

After trying numerous suggested options, A complete Uninstall of Cisco Anyconnect and re-install as described below worked for me.

Uninstallation

1. Open the Control Panel and click on Uninstall a program.
    
2. Select Cisco AnyConnect Secure Mobiliy Client and click the Uninstall link at the top of the list of programs.
    
3. Follow through the complete procedure.
    
4. Select Cisco AnyConnect Diagnostic and Reporting Tool and click the Uninstall link at the top of the list of programs.
    
5. Follow through the complete procedure.
    
6. Close Control Panel and open File Explorer.
    
7. Navigate to C:\ProgramData\Cisco.
    
8. Delete the Cisco AnyConnect Secure Mobility Client folder (if it still exists).
    
9. Navigate to C:\Program Files (x86)\Cisco
    
10. Delete the Cisco AnyConnect Secure Mobility Client and Cisco AnyConnect VPN Client folders (if they still exist).
     
11. Navigate to C:\Users\%user%\AppData\Local\Cisco
     
    Note: Replace %user% with your user account name
    *You will need to show hidden folders to access the 'App Data' directory 
       
12. Delete the Cisco AnyConnect Secure Mobility Client, Cisco Hostscan and Cisco AnyConnect VPN Client folders (if they still exist).
       
13. Cisco AnyConnect Secure Mobility Client is now uninstalled. 
       
    *If you are unsure how to show hidden files and folder see here: http://windows.microsoft.com/en-us/windows/show-hidden-files#show-hidden-files=windows-7

So one of the things that happens in posture assessment is that the a bunch of data gets passed between  the client and firewall... I tried bumping that limit and it fixed it for a while... 

Turns out the  user was using Fiddler which left many certificates in the Personal cert store...  once that was cleaned up, the issue dissappeared.

I have this same problem.  My cisco anytime worked fine at home for a few days and now I'm getting the error

Posture Assessment Failed: Hostscan CSD prelogin verification failed. 

Does anyone have a tried and true way to fix this.  I saw where a reinstall of Cisco Anytime might be required?

Thanks

After uninstalling as suggested by @sgoundla, I installed an old version of AnyConnect and then made sure I'm updated with the version of AnyConnect that the particular VPN server pushes out. If the automatic update doesn't work, it'll at least tell you which version no. it tried to install so you can obtain that and install it manually. That was the way I got mine working again.

So this error may pop up if the client version is newer than the server version.

This solved the issue for me:
https://www.reddit.com/r/Cisco/comments/imsmn2/helping_the_next_guygal/
Basically restarting the "Internet Connection Sharing (ICS) " service fixed it. Shutting down the computer and powering it back up did not resolve the issue, but restarting this service after computer came up did the trick.