last person joined: yesterday 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

How to match Cisco-AVPair?

Jump to Best Answer
This thread has been viewed 1 times
  • 1.  How to match Cisco-AVPair?

    Posted Mar 16, 2020 07:34 PM

    Hi there,


    My Cisco ASA sends some info inside a AVPair, that I would like to act upon. On example is mdm-tlv=device-platform=<platform>. I would like to send different options depending on the value inside platform.

    If I could use this inside a policy, I would do something like if AV-Pair CONTAINS Linux , etc.

    Unfortunatelly I can't see a way to use the AV-Pair values on Enforcement policies.

    Any ideia how can I use this info?



  • 2.  RE: How to match Cisco-AVPair?
    Best Answer

    Posted Mar 16, 2020 09:38 PM

    Use a role map.

  • 3.  RE: How to match Cisco-AVPair?

    Posted Mar 17, 2020 10:00 AM

    Great suggestion.