Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
since ‎10-29-2017
‎10-29-2017
PaulWhite1977_
Not applicable

Windows File Access policy odd behaviour dealing w...

by in Pulse Connect Secure
‎10-19-2009 01:56:AM
‎10-19-2009 01:56:AM
I've connected the IVE appliance to Microsoft Active directory and am retrieving the company attribute to dynamically build file UNC paths e.g \\server\share\<userAttr.company> However if the company attribute is blank the user could potentially list the entire main tree level which I need to avoid. I was hoping to create a file access policy along the lines of userAttr.company = '' -> then deny as its blank and permit all else. What appears to happen is that if the attribute is blank it is not retrieved in the LDAP lookup and this above condition is never true. Aside from flipping the logic on its head and listing every case such as: userAttr.company = 'CUSTOMER' OR userAttr.company = 'SUPPLIER' etc..... Is there a simple way to check on a File Access policy is the attribute is blank or not returned at all? Something along the lines of..... If Not exists userAttr.company or userAttr.company = BLANK -> Deny ... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.