Untrusted policy server

Tanatorio · ‎01-20-2020

Dear VPN guru,

i got this issue when trying to launch the ERA 2 connection.

After inserting the credentials, the policy scan will load 1% and then stop with the following error.

Checked the Anyconnect manual, and it says that:

Untrusted Policy Server Cancelled by the user—When you unblock the connection to untrusted servers in the AnyConnect UI with the System Scan Preferences tab, you receive the AnyConnect Download Security Warning in a popup window. When you click Cancel Connection on this warning page, the ISE Posture tile changes to this status.

I already tried to perform a clean installation, but the issue persist. Please help!!!

Rob Ingram · ‎01-20-2020

Hi,
Check your ISEPostureCFG.xml file, have a look at the server name rules - check you have the correct domain name either "*.company.fqdn" or just "*".

HTH

DannyDulin · ‎08-21-2023

Hi Rob.

I am having this issue also. I checked the ISEPostureCFG.xml for server name rules and it is set to "*"

What I noticed is that my client is looking for the IP address, not an FQDN. Even when I change the ConnectionData.xml.

Mike.Cifelli · ‎01-20-2020

Adding to @Rob Ingram comment.

Also, make sure your client has the PSN cert chain imported into its respective cert trust stores.

Untrusted policy server

ASR9K:show policy-map interface にて Service Policy not installing となる

Smart Licensing Using Policy の Online 方式でライセンスを適用する方法

ACI QoS - QoS Policy 設定

PROBLEM WITH LOCAL HTTP SERVER

ISE - O que precisamos saber sobre DNS Server