Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2661
Views
5
Helpful
1
Replies

Cisco ISE to check Windows Firewall is enabled or not in Posture Requirement.

Tabish Mirza
Level 1
Level 1

‎05-18-2012 06:37 AM - edited ‎03-10-2019 07:05 PM

I have already a running setup for wireless employees. Everything is working fine. Wireless Employees authenticate by AD through ISE. URL redirection is working fine. Posture requirements to check Hotfixs & AV installation & definition is working fine. Now I have new requirement to check whether Window firewall is enabled or not, if not then put the users in temporary access & do the remediation, if failed then put the user in noncompliant.

I want to know under which option i can create Window Firewall requirement.

Thanks

Labels:
0 Helpful
1 Reply 1

Eduardo Aliaga
Level 4
Level 4

‎05-18-2012 11:35 PM

Windows Firewall in Windows XP creates  a registry key

Registry Key:
HKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile

Registry Value:
EnableFirewall

If the XP Firewall is on the Value will be = to “1”

The following link shows how to tell if firewalls of different brands are running

http://cisconac.blogspot.com/2007/05/custom-checks-personal-firewall.html

So, the ISE config will be something like the following picture. Please rate if it helps

Customers Also Viewed These Support Documents