Policy Manager OnConnect Enforcement Service

This section provides the following information:

Configuring the Service

Configure an Enforcement Policy

Policy Manager OnConnect Enforcement is an enforcement model that allows you to use non-802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. methods for device scans, VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. placement, and so on. Policy Manager OnConnect Enforcement allows enforcement in non-802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. environments without the need for an agent, such as OnGuard, on the endpoint. For related information, see:

Enabling OnConnect Enforcement on a Network Device

System Page

When Policy Manager OnConnect Enforcement is enabled, Policy Manager performs the following actions:

Detects when a new endpoint connects to the network.

Scans the endpoint to identify the logged-in user and other device-specific information.

Triggers a Web-based authentication (WebAuth) for the device.

Performs SNMP Simple Network Management Protocol. SNMP is a TCP/IP standard protocol for managing devices on IP networks. Devices that typically support SNMP include routers, switches, servers, workstations, printers, modem racks, and more. It is used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention. -based enforcement to change the network access profile for the device.