I want to ask you about host enforcer policy in IC. The policy in host enforcer that we create, is it effect the endpoint/client for L2 enforcement with OAC? For example : We created policy : - if complied (resource 10.10.10.10) roles allowed : allow access to the resource for client - if remediation (resource 10.10.10.10) roles blocked : deny access to the resource for client. As we tested the host enforcer with L2 enforcement, theres is no effect if we use host enforcer policy. Or is it host enforcer just working if use L3 enforcement, not at L2?