GEARS is endpoint client software for Mac and Windows, developed by OPSWAT, which can be integrated withCisco ASA policies to perform additional Endpoint Assessment checks, enforced by ASA.
Additional Endpoint Assessment checks include whether endpoints running the GEARS Client have hard disk encryption protection enabled, antiphishing protection enabled or have been compromised by malware infection.
The GEARS Client stores endpoint device compliance status in the Windows Registry or Mac OS p-list.
The Cisco ASA can access and use this information through a Process Scan within the Host Scan configuration to determine if a monitored endpoint should be granted network access. The steps found within this document assume that this configuration is occurring with the ADSM console.
To use GEARS with ASA Host Scan, a user will need to deploy GEARS Client to endpoint devices to be monitored and configure device checks through the GEARS configuration page.