Manualshelf

Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
51525354555657585960
The following table describes the Request Details - Access Control Capabilities page parameters:
Parameter Description
Change Status You can view or change to any of the following access control types: .
l Agent - This control is available for a session where the endpoint has the
OnGuard Agent installed. The following actions are allowed:
n Bouncing
n Sending Messages
n Tagging the status of the endpoint as Disabled or Known
l SNMP - This control is available for any session for which Policy Manager has
the switch and port-level information associated with the MAC address of the
endpoint. Policy Manager bounces the switch port to which the endpoint is
associated using SNMP.
NOTE: For this type of control, SNMP read and write community strings must be
configured for the network device. You must configure Policy Manager as an
SNMP trap receiver to receive link up/down traps.
l RADIUS CoA - This control is available for any session where access was
previously controlled by a RADIUS transaction.
NOTE: The network device must be RADIUS CoA capable and RADIUS CoA
enabled, when you configure the network device in Policy Manager. The actions
available depend on the type of device. The Disconnect or Terminate Section
action is supported by all devices. Some devices support setting a session timeout,
changing the VLAN for the session, and applying an ACL.
l Server Action - This control is available by default for any session. Select the
server action from the drop-down list. The list includes the following options:
n Check Point Login
n Check Point Logout
n Fortinet Login
n Fortinet Logout
n Handle AirGroup Time Sharing
n Nmap Scan
n SNMP Scan
NOTE: To Enable Nmap Scan or SNMP Scan, the endpoint must have an IP
address.
Server Action Select the server action that is performed on endpoints. You can select from the
following options:
l Check Point Login
l Check Point Logout
l Fortinet Login
l Fortinet Logout
l Handle AirGroup Time Sharing
l Nmap scan (Appears only if the server action contains a valid IP address)
l Snmp Scan (Appears only if the server action contains a valid IP address)
Context Server Enter a valid server name. You can enter an IP address or domain name.
Table 5:
Request Details - Access Control Capabilities Page Parameters
Dell Networking W-ClearPass Policy Manager 6.5 | User Guide Monitoring | 51