Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

IC Host Checker Policy

SOLVED
Go to solution
aeroplane_
Regular Contributor
‎07-08-2010 01:25:AM
‎07-08-2010 01:25:AM

IC Host Checker Policy

Hi

I would like to know, after the end point authentication when IC checks the end point is compliant with my host checker policy or not then IC should give that ROLE (even user is not compliant to security policy) but it should send the logs through SNMP to my NMS that this user is not compliant with the host checker policy.

Kindly advice the configuration for this requirement on IC.

Thanks

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
mnarine_
Contributor
‎07-12-2010 11:44:AM
‎07-12-2010 11:44:AM

Re: IC Host Checker Policy

Hi,

What you want to do is evaluate the policies on the realm level. If you do not want it to be a requirement for a role, then you don't do anything at the role level. You will stil get a log message generated stating if the user pass/fail the policies based on evaulate only. This configuration will not prevent the user from logging in and being mapped to a specific role.

-Mike

View solution in original post

0 Kudos
4 REPLIES 4
mnarine_
Contributor
‎07-12-2010 10:41:AM
‎07-12-2010 10:41:AM

Re: IC Host Checker Policy

What you want to do is set the restrictions on the role to evaluate the Host Checker policies but not enforce it. This way the user will still be able to map into the role but a message will be logged.

-Mike

0 Kudos
aeroplane_
Regular Contributor
‎07-12-2010 11:39:AM
‎07-12-2010 11:39:AM

Re: IC Host Checker Policy

Hi Mike

Thanks for the input. But as per your advice I checked the role level restrictions options for host checker and I found that there are no such things like evaluate or enforce. I just found two options there:

Allow all users (Host Checker not required)
Allow users whose workstations meet the requirements specified by these Host Checker policies:

But I checked on realm level restrictions and I found these options which you mentioned that is evaluate or enforce.

Can you please advice If we would like to only evaluate host checker policies on role level but host checker policy should not enforced the how I can do this?

Thanks

Allow all users (Host Checker not required)
Allow users whose workstations meet the requirements specified by these Host Checker policies:
0 Kudos
mnarine_
Contributor
‎07-12-2010 11:44:AM
‎07-12-2010 11:44:AM

Re: IC Host Checker Policy

Hi,

What you want to do is evaluate the policies on the realm level. If you do not want it to be a requirement for a role, then you don't do anything at the role level. You will stil get a log message generated stating if the user pass/fail the policies based on evaulate only. This configuration will not prevent the user from logging in and being mapped to a specific role.

-Mike

0 Kudos
aeroplane_
Regular Contributor
‎07-12-2010 10:31:PM
‎07-12-2010 10:31:PM

Re: IC Host Checker Policy

Thanks for your help. I have added the IC in to the NSMXpress so could you please confirm that these logs I means users logs indicating user has passed the host checker policy or not, would be send by IC to NSMXpress??

Thanks

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.