Cisco Cisco AnyConnect Secure Mobility Client v4.x Technical Manual
Contents
Introduction
Prerequisites
Requirements
Components Used
Configure
Network Diagram
ASA
ISE
Step 1. Configure Network Device
Step 2. Configure Posture conditions and policies
Step 3. Configure Client Provisioning resources and policy
Step 4. Configure Authorization rules
Verify
Before VPN session establishment
VPN session establishment
Client Provisioning
Posture check and CoA
Troubleshoot
References
Introduction
This document describes how to configure the Cisco Identity Services Engine (ISE) to provide full
access to the network only when USB mass storage devices are disconnected.
access to the network only when USB mass storage devices are disconnected.
Prerequisites
Requirements
Cisco recommends that you have knowledge of these topics:
Basic knowledge of Adaptive Security Appliance (ASA) CLI configuration and Secure Socket
Layer (SSL) VPN configuration
Layer (SSL) VPN configuration
●
Basic knowledge of remote access VPN configuration on the ASA
●
Basic knowledge of ISE and posture services
●
Components Used
Cisco Identity Services Engine (ISE) version 2.1 along with AnyConnect Secure Mobility Client 4.3
supports USB Mass Storage Check and Remediation. The information in this document is based
on these software versions:
supports USB Mass Storage Check and Remediation. The information in this document is based
on these software versions:
Cisco ASA software Versions 9.2(4) and later
●