Create Endpoint Settings elements
Endpoint Settings elements define what information to collect about the endpoint clients.
For example, you can check:
- The client operating system and whether it has received security updates
- Whether anti-virus software is enabled on the client
- The status of the local firewall on the client
You can use Endpoint Settings elements for access control based on endpoint information. Depending on the type of information that you are checking for, you might want to allow or discard traffic from clients where the criteria matches.
For more details about the product and how to configure features, click Help or
press F1.
Steps
-
Select
Configuration.
- Browse to .
- Right-click Endpoint Settings, then select New Endpoint Settings.
- Configure the settings, then click OK.
Endpoint Settings Properties dialog box
Use this dialog box to define Endpoint Settings properties. The endpoint clients send information, such as the operating system used on the endpoint. When used in a policy, you can use the information for matching to allow or discard network traffic.
| Option | Definition |
|---|---|
| General tab. A summary of the options selected on the other tabs is shown. | |
| Name | The name of the element. |
| Category (Optional) |
Includes the element in predefined categories. Click Select to select a category. |
| Comment (Optional) |
A comment for your own reference. |
| Option | Definition |
|---|---|
| Operating System tab. Select the operating systems on the endpoint to match against. For example, you might want to block an endpoint from accessing a certain network if the operating system cannot be identified. | |
| Option | Definition |
|---|---|
| Security Checks tab | |
| Endpoint Anti-Virus Statuses | Select the options that you want to match against. For example, you can create a match if the anti-virus software on the endpoint is enabled, disabled, or if the status cannot be identified. |
| Endpoint Operating System Update Statuses | Set the match depending on how recently the operating system was updated. For example, you can create a match if the operating system on the endpoint received an update within the past ten days. |
| Endpoint Local Firewall Statuses | Select the options that you want to match against. For example, you can create a match if the local firewall on the endpoint is disabled or the status of the firewall cannot be identified. |