Resolved! Ise block rogue domain
I have implement ise and enabled ise posture at client environment. Policy rule configured as if domain id and posture status pass will get full access. What if someone setup a laptop with same domain and pass posture, will he able to access network...