Guest

Preview Tool

Cisco Bug: CSCvi12044 - Anyconnect ISE Posture module doesn't detect Crowd strike Falcon

Last Modified

Feb 15, 2019

Products (1)

  • Cisco AnyConnect Secure Mobility Client

Known Affected Releases

4.5(3040)

Description (partial)

Symptom:
ISE 2.1 patch 3
Configured posture policy to check any AV installed on client machines. 
 Windows 10 with Anyconnect 4.5.03040, Compliance module 4.2.1499.0 installed. 
Client machine has CrowdStrike 3.9 version installed on the client machines 
But system scan couldn't detect the Crowdstrike as the AV/AM installed but lists other products like Windows defender, Symantec etc.
Tried with two different compliance module 4.2.1226 and 4.2.1499 but still its the same. 
Ran Harness tool for 4.2.1499 but it couldn;t detect the CrowdStrike Falcon as the the AV installedattached. 
As per the release notes of 4.2.1499 (Crowdstrike,Inc) is listed as the supported product. 
https://www.cisco.com/c/dam/en/us/td/docs/security/ise/ac_compliance_module/win_am_pm_de_fw_4_2_1499_0.pdf

Conditions:
With CM 4.2.1226 or CM 4.2.1499 used with AnyConnect  4.5.03040
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.