Users Guide
382 | Configuring Enforcement Policies and Profiles Dell Networking W-ClearPass Policy Manager 6.6 | User Guide
Attribute Action/Description
Attribute Name Select one of the following attribute names:
l Path of the Script: Complete the path of the script/program, including the filename. This
attribute checks for the existence of a file on an endpoint device and also verifies the
SHA256 Checksum.
l Command to Execute: Specify the complete command that OnGuard Agent should
execute. You can use the command to launch scripts or pass command line arguments.
For example, to launch VBScript (InstallHotfixes.vbs) and pass All as an argument, you
would enter the following:
cscript /nologo C:\Test\InstallHotfixes.vbs All
If it is not required to pass arguments, set the value of this attribute to the same value
specified for Path of the Script.
l SHA256 Checksum: Specify the SHA256 checksum of the script/program. This attribute
accepts comma-separated multiple SHA256 checksums to allow execution of different
versions of same script/program.
l Execution Level: The attribute values are: User and System.
n To launch the script/program as the current logged-on user, select User.
n To launch the script/program as the system user with admin rights, select System.
l Wait Time (Seconds) Before Executing Script: Specify the time (in seconds) after which
OnGuard Agent should launch the script/program.
n When Wait Time Before Executing Script is configured, the OnGuard Agent does not
process events such as Interface Up/Interface Down and health changes during the wait
time.
l Pass Health Evaluation Results to Script: Check the check box (which sets the value to
true) to enable OnGuard Agent to pass health evaluation results to the script/program as an
argument. The default is false.
n When the Pass Health Evaluation Results to Script attribute is set to true, OnGuard
Agent passes health evaluation results to the script in a URL Encoded JSON format.
n URL Encode replaces double quotes, spaces, and Unicode characters with their ASCII
value in %XX format. For example, spaces are replaced by %20 and double quotes are
replaced by %22.
l Success Message: Enter the message to be shown to the end user when the script/program
is launched successfully.
l Failure Message: Enter the message to be shown to the end user when execution of the
script/program fails.
l Progress Message: This message will be shown on the OnGuard Progress Page (see
Creating OnGuard Custom Web Pages on page 702) while OnGuard Agent is executing the
custom script and states what action is being performed.
l Description: Provides a description of the custom UIwindow or script.
l Download URL: If the script/program configured in the Path of the Script attribute is not
present on the client machine, enter the URL of the remote server from which OnGuard
Agent can download the script/program.
n OnGuard Agent supports downloading scripts only from HTTP and HTTPS URLs. For
HTTPS URLs, OnGuard skips server certificate verification.
n Also, OnGuard Agent does not support downloading files from URLs that require
credentials.
Attribute Value The Attribute Value set depends on the selected Attribute Name.
Table 194: Agent Script Enforcement > Attributes Parameters