Security

Hi Airheads!

 

I am trying to create a Post-Auth Enforcement Profile that sets a custom Endpoint Attribute value based on the value of another attribute in the Endpoint Repository. Basically, I am trying to map the Endpoint Repository "Hostname" value into a custom Endpoint Attribute called "Hostname" so I can reference it in an LDAP query.

The problem is that I don't know the correct syntax to do that. I've tried several iterations along these lines:

However, this simply returns my query as text into the attribute:

Does anyone know how to do this?

 

Cheers,

Chris

I think you're looking for :

 

%{Authorization:[Endpoints Repository]:Hostname}

Thanks rkerr, I tired that query as well, and it only returns the query text in the attribute, not the queried value. I'm working with the TAC to get an answer, if they figure it out I will post their solution.

It works fine for me - is the Endpoint Repository definitely selected as an Authentication Source in the service definition?

You must see the value in the access tracker, if you se it there, then the correct autorisation source is enabled, en you can use it in a post authenication and write it to an endpoint.