Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Endpoint Conflict - Change OS

This thread has been viewed 3 times

  • 1.  Endpoint Conflict - Change OS

    Posted Jun 11, 2020 10:51 AM

    Hello, I'm using in my enforcement the option to block if a conflict has been detected on profiling:

    Authorization:[Endpoints Repository]:Conflict  EQUALS  true

    Apply Deny access profile

     

    But I'm getting some false positives, I have some computers with windows 7 that is being upgrade to windows 10 and Linux, In profiling it keeps the Device category but changes the Device OS Family and Device name, triggering the endpoint conflict.

     

    It's possible to only mark conflict if only the Device Category has been changed? I would like to ignore OS Family and Device name changes.