Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Onguard Tokens

This thread has been viewed 1 times

  • 1.  Onguard Tokens

    Posted Nov 16, 2017 01:33 AM

    Hi,

     

    Right now we configured 2 tokens for the posture policy, Healthy and Quarentine. Healthy moves the machine to the corporate network (10.23.0.0) , Quarentine moves it to a limited network (10.30.0.0).  In addition to those 2, I also want to use the Infected token to move the infected machine to blocked network (No network at all). 

     

    Is it possible to use more than 2 tokens at the same posture policy or should i create a dedicated policy only for the infected token.

     

    Help needed.

     

    Thank you.

    Shmulik Mazor



  • 2.  RE: Onguard Tokens

    Posted Nov 16, 2017 04:51 AM
    You would need to add a new posture policy then add the new policy to your health check service and the appropriate enforcement. Clients can only have one posture I believe.


  • 3.  RE: Onguard Tokens

    Posted Nov 16, 2017 06:29 AM

    We already did that. We created a new posture policy with the healthy and infected tokens and put it in the web auth service with the healthy and quarentine posture policy and it's not working.

     

     



  • 4.  RE: Onguard Tokens

    EMPLOYEE
    Posted Nov 16, 2017 09:03 AM
    Posture tokens are assigned as a result of posture policy evaluation. Did you map it in the rules of the posture policy?