Security

last person joined: 11 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Enforcement profiles based on device category

This thread has been viewed 9 times

  • 1.  Enforcement profiles based on device category

    Posted Feb 24, 2017 09:22 AM

    It seems there are a few ways todetermine the type of device after it is profiled, and I'm wondering what the best way to create an enforcement profile for the device type is. For example, apply a certain policy if the device is a SmartDevice. 

    Here are a couple ways that seem to work, but neither seem to be the proper way, as some devices are missed.

     

    (Device:Device Type  CONTAINS  SmartDevice)

     

    (Authorization:[Endpoints Repository]:Category  CONTAINS  SmartDevice)

     

    What's the best setup for determining the device type?



  • 2.  RE: Enforcement profiles based on device category
    Best Answer

    Posted Feb 24, 2017 09:52 AM
    Use this one Authorization:[Endpoints Repository]:Category CONTAINS SmartDevice) and make sure you add the Endpoint Repository as an authorization source in the service


  • 3.  RE: Enforcement profiles based on device category

    Posted Feb 24, 2017 09:52 AM
    Use this one Authorization:[Endpoints Repository]:Category CONTAINS SmartDevice) and make sure you add the Endpoint Repository as an authorization source in the service