cancel
Showing results for 
Search instead for 
Did you mean: 

how to create a rule that not analyze (pass) the checker on a network

Highlighted
New Contributor

how to create a rule that not analyze (pass) the checker on a network

Hi Everybody

 

I need to crate a rule that when user for a network (147.90.87.0/24) try to connect with a Sesure Access don't use host checker.

 

Is it possible?

 

Best Regards

Charly

1 REPLY 1
Highlighted
Regular Contributor

Re: how to create a rule that not analyze (pass) the checker on a network

You might be able to do this using two realms and the Source IP authentication policy. I've not tested this but the following may work

On the realm you want Host checker set the Source IP policy to deny access if the source IP is in the subnet

On the realm you don't want host checker set the Source IP policy to allow if the source IP is in the subnet

Assign both realms to the sign-in policy (URL)

 

When multiple realms are assigned to a sign-in policy if you don't meet the polices they are not listed (if there is only one valid one then this is used by default). So if I have my logic correct users on the required network are only allowed to use the non-host checker realm and people not in the required network are only allowed to use the host checker realm