Hi
In our environment there have been requests to limit the number of devices a user can utilize on the WIFI network and also register the username of each device.
Users authenticate with AD username and password.
I have created an Enforcement profile that update the endpoint with the username.
Endpoint Username = %{Authentication:Username}
This part is successful.
In the authentication service I specify a condition for the Enforcement policy
(Authorization:[Endpoints Repository]:Unique-Device-Count GREATER_THAN 1) [Deny Access Profile]
This doesn't seem to work, I can access the network with multiple devices as a specific user.
Just for the test I have tried to register as a guest and the rules above works perfect if a guest user tries to authenticate twice, but not if an AD user authenticates twice.
Have I missed anything in the configuration or isn’t this possible to implement in the way we planned?
Regards
Jonas