Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS CTA(anyconnect) on laptop

Hey guys and gals,

I need to confirm something.  I am new to this but in my current environment we use Cisco anyconnect for posture checking and its using the CTA portion of anyconnect.  I want the laptop to pass a posture check without using the CTA.  If I add a posture policy to my ACS to look for a file or any registry key would I be able to authenticate on the network without CTA?  I would keep CTA in place but I just want to add an addition to the posture policy.  Please let me know. 

Thanks

2 REPLIES

ACS CTA(anyconnect) on laptop

Wow,

You are going way back! You are using the old nac framework where the CTA is used to relay the tokens/health status of the client. You need CTA since that is client that reports back to ACS on the posture status and if you meet the policy.

See step 4 in the posture validation section on the link below.

http://www.cisco.com/en/US/docs/security/cta/2.1.103.0_supplicant/admin_guide/ctaOver.html

thanks,

Tarik Admani
*Please rate helpful posts*

Tarik Admani *Please rate helpful posts*
New Member

ACS CTA(anyconnect) on laptop

Does that have anything to do with the Network Polices because they show as not active.  Only laptops that are joined to the domain is allowed on the network.

149
Views
0
Helpful
2
Replies
CreatePlease login to create content