This did not work. There is a condition you can use in role mapping or enforcement (where I chose) to match the known/unknown condition of the endpoint.
Authentication:MacAuth equals KnownClient (or UnknownClient)
I did find this in documentation. It was kind of obscure but a little configuration and testing confirmed my configuration.
Original Message:
Sent: May 08, 2023 01:28 AM
From: Shmulik_Miata
Subject: Status in Endpoint
If i understand you, you want to change the status of an endpoint by the enforcement policy?
If yes, do it by creating post-auth profile and in the rules, add:
Status-Update : Endpoint : Known
and then add to your enforcement policy.
Original Message:
Sent: May 07, 2023 05:04 PM
From: Jason Mc
Subject: Status in Endpoint
I'm sure that I'm just missing something here. I would like to add the status condition from my endpoints to my enforcement policy for MAC auth. Is this possible?
For instance I would like to manually move the endpoint status to Known and have this be part of my enforcement.
Thanks!
Jason