Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Anyconnect Posture module

Hi.

Im trying to figure out how to get the posture module working.

1. have adv. endpoint assessement.

2. Added posture as a module in the group policy. (Can see it installing in the anyconnect client)

3. Created a dynamic policy based on the example from Cisco.

Checking that the user is in group = test and adds the "lua" script to check if the users has AV installed. Seems like nothing is beeing checked in the LUA part of dynamic policies. Any ideas?

If i delete the LUA script the user gets denied, when i add it the user gets in without any problems without virus software installed.

LUA Script:

(assert(function()
            local block_connection = true
      local update_days = "15" --days
      local av_lastupdate = update_days*86400
      for k,v in pairs(endpoint.av) do
              if (CheckAndMsg(EVAL(v.exists, "EQ", "true", "string") and EVAL
                 (v.lastupdate, "LT", av_lastupdate, "integer"),
                       "",
                       k.." exists; but last update is greater than 15 days old.
                           Expecting under 15 days.")) then
                       block_connection = false
              elseif (EVAL(v.exists, "NE", "true", "string")) then
              block_connection = true
              end
      end
      return block_connection
end)())

Where can i check if the client sen the parameters needed to run this script?

Regards Oystein   

Everyone's tags (3)
248
Views
0
Helpful
0
Replies
CreatePlease login to create content