I've got a new CPPM installation that I'm trying to wrap my head around. Our organization also uses Airwatch for device enrollment and control, so CPPM acts pretty much as a gatekeeper and role assigner to the network.
Anyway, I was looking into some things, and I was wondering if it is possible to do the following: When doing role mapping, is it possible to write rules such that a statement is evaluated against another statement?
For example, if I write this rule, I'm looking at a rule per serial number in Airwatch.
Type: Endpoint
Name: Serial Number
Operator: EQUALS
Value: SomeSpecificSerialNumber
However, if I could do something that could be written in plain English as "If Endpoint Serial Number EQUALS (RADIUS:IETF User-name)", then I could compare the device-presented username, which in our case is the Serial Number, to the back-end list provided from Airwatch.
It seems like this should be somewhat simple to accomplish, but I haven't figured out how to compare the output of two expressions.
Any suggestions?