Manualshelf

Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
291292293294295296297298299300
Dell Networking W-ClearPass Policy Manager 6.5 | User Guide Enforcement | 299
Chapter 9
Enforcement
Policy Manager controls network access by sending a set of access-control attributes to the request-originating
Network Access Device (NAD). Policy Manager sends these attributes by evaluating an enforcement policy
associated with the service. Each enforcement policy contains a rule or set of rules for matching conditions
(role, posture, and time) to actions (enforcement profiles). Commonly used enforcement profiles include
attributes for VLAN, Filter ID, Downloadable ACL, and Proxy ACL. For a general overview of network access
enforcement policies, see Enforcement Architecture and Flow on page 31.
This chapter describes the following topics:
l Configuring Enforcement Policies on page 299
l Configuring Enforcement Profiles on page 301
Configuring Enforcement Policies
One and only one enforcement policy can be associated with each service. Enforcement policies can be added
in one of two ways:
l From the Configuration > Enforcement > Enforcement Policies.
l From the Configuration >Services page as part of the flow of the Add Service wizard.
The following figure displays the Enforcement Policies page:
Figure 268: Enforcement Policies Listing Page
Click Add Enforcement Policy to open the Add Enforcement Policy wizard: