Security

Reply
Regular Contributor I
Posts: 166
Registered: ‎04-13-2009

ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info

Hi,

 

It is possible to have more information about this new option with ClearPass 6.6.1 ? when setting a AirWatch Endpoint Context Server

 

Because the documentation is (not) yet update : http://www.arubanetworks.com/techdocs/ClearPass/6.6/PolicyManager/index.htm#CPPM_UserGuide/Admin/EndpointContextServersAdd_airwatch.htm?Highlight=airwatch

ACMP 6.4 / ACMX #107
Guru Elite
Posts: 8,191
Registered: ‎09-08-2010

Re: ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info

From the 6.6.1 release notes:

 

airwatch-release-notes.PNG


Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Regular Contributor I
Posts: 166
Registered: ‎04-13-2009

Re: ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info

Yes, i have read the release note...

 

But what is the "Security Info" ?

ACMP 6.4 / ACMX #107
Guru Elite
Posts: 8,191
Registered: ‎09-08-2010

Re: ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info

If you check the box, it will pull in all of the extra attributes from AirWatch.


Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Regular Contributor I
Posts: 166
Registered: ‎04-13-2009

Re: ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info


cappalli wrote:

If you check the box, it will pull in all of the extra attributes from AirWatch.


Ok, What this extra attributes ?

ACMP 6.4 / ACMX #107
Moderator
Posts: 473
Registered: ‎11-09-2012

Re: ClearPass 6.6.1: AirWatch: Enable to fetch Endpoint Security Info

Let me answer as this is an enhancement that as driven by myself.

 

We poll for the summary and page in the data we get, parsing this and writing it into our Endpoint DB, we then make secondary calls for every endpoint for more security/policy specific attributes. Their are SIX TAGS in the device XML we get,
 
IsCompromised
DataProtectionEnabled
BlockLevelEncryption
FileLevelEncryption
IsPasscodePresent
IsPasscodeCompliant
 
 
Now one of these XML TAG attributes <IsCompromised> is also available in the summary poll, its called <CompromisedStatus>.
 
So by not polling for the security data we save a HUGE amount of extra polling but we do lose the ability to have certain endpoint attributes data available to be used by CPPM in its enforcement process.
 
But, I've had a number of very large customers 75K+ devices who don't care about the security data but do care about the large overhead of the secondary polling, plus it absolutely kills Airwatch servers.
 
HTH

 


Best Regards
-d

Snr Tech Marketing Engineer - ClearPass

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.
Search Airheads
Showing results for 
Search instead for 
Did you mean: