Cisco client used is AnyConnect Secure Mobility Client 3.0.
I read in another thread that personal use home AV such as AVG and Microsoft Security Essentials update to new version numbers on a regular basis and then fail to be recognized when prelogin checks are done prior to VPN connection.
Is there any way to set up the ASA so that if it does not recognize the version of AV installed, (becuase it is a new version not in the CDS database etc) that, instead of rejecting the connection completely, it will give some limited access such as only network access to use the Remote Desktop Client protocol and/or access Intranet web sites through the browser?
What other solutions do others use? Not check AV version? Allow home pc users to install Corporate AV on home PCs? Not allow home pc user to connect at all?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...