Security

last person joined: 3 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

How to match Cisco-AVPair?

This thread has been viewed 7 times

  • 1.  How to match Cisco-AVPair?

    Posted Mar 16, 2020 07:34 PM

    Hi there,

     

    My Cisco ASA sends some info inside a AVPair, that I would like to act upon. On example is mdm-tlv=device-platform=<platform>. I would like to send different options depending on the value inside platform.

    If I could use this inside a policy, I would do something like if AV-Pair CONTAINS Linux , etc.

    Unfortunatelly I can't see a way to use the AV-Pair values on Enforcement policies.

    Any ideia how can I use this info?

     

    Thanks



  • 2.  RE: How to match Cisco-AVPair?
    Best Answer

    EMPLOYEE
    Posted Mar 16, 2020 09:38 PM

    Use a role map.



  • 3.  RE: How to match Cisco-AVPair?

    Posted Mar 17, 2020 10:00 AM

    Great suggestion.

     

    Thanks.