HP Identity Driven Manager Software Series User Manual
Page 106
3-38
Using Identity Driven Manager
Defining Access Policy Groups
Figure 3-28. Access Rule with Endpoint Integrity options
Select the Endpoint Integrity option to use with the access rule, as described
in the following list.
•
Select
ANY
to apply the access rule regardless of the status passed
from the endpoint integrity system.
•
Select
PASS
to apply the access rule in cases where the system the
user is logged in on passes the endpoint integrity check.
•
Select
FAIL
to apply the access rule in cases where the system the user
is logged in on fails the endpoint integrity check.
•
Select
INFECTED
to apply the access rule in cases where the system
the user is logged in on has been identified as infected by the endpoint
integrity system.
•
Select
UNKNOWN
to apply the access rule in cases where the system
the user is logged has an endpoint integrity status setting of
"unknown".
For example, if you want to restrict access to a specific (remediation) VLAN
when the endpoint integrity check fails, create a Location that specifies the
remediation VLAN, then create an access rule that will put the user on that
Location if the Host Integrity value is
FAIL
.