Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
0
Helpful
1
Replies

Software installation requirements to do host scan and posture assessments?

Go to solution
webabc123
Level 1
Level 1

‎08-14-2020 10:03 PM - edited ‎08-14-2020 10:05 PM

We have devices using AnyConnect 4.x for VPN. We want to start finding and screening out unmanaged devices.  

 

I have heard that configuring posture assessment to check devices for existence of certain files, installed software or registry keys can be done before allowing network access. 

It looks like this requires additional software to be installed (posture or compliance module) besides the AnyConnect client before the devices can be checked. 

If the AnyConnect client for Windows is already installed, can the head end ASA push the additional modules to the device using the elevated system privileges of the Cisco service account running on the system (like it does when upgrading AnyConnect versions) or does the logged in user have to have administrator privileges for the module to be installed?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-15-2020 07:35 AM

Adding modules (like Hostscan for ASA-based posture assessment) to an existing AnyConnect client installation can be done from the ASA headend and does not require the end user to have local admin privileges.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-15-2020 07:35 AM

Adding modules (like Hostscan for ASA-based posture assessment) to an existing AnyConnect client installation can be done from the ASA headend and does not require the end user to have local admin privileges.

0 Helpful
Customers Also Viewed These Support Documents