Add an anti-malware endpoint attribute to a DAP record

Add anti-malware endpoint attributes to a DAP to control access based on the presence and configuration of anti-malware software on client devices.

Anti-malware endpoint attributes allow you to create access policies that verify client devices have appropriate anti-malware protection before granting network access.

Before you begin

Follow these steps to add an anti-malware endpoint attribute to a DAP:

Procedure

Step 1

Choose Secure Connections > Dynamic Access Policy.

Step 2

Create or edit a DAP policy and a DAP record.

Step 3

Click the Endpoint Criteria tab and click Anti-Malware.

Step 4

Select the Match criteria as All or Any.

Step 5

Click + to add the anti-malware attributes.

In the Anti-Malware dialog box, configure these parameters:

  1. Check the Installed check box to indicate whether the selected endpoint attribute and its accompanying qualifiers are installed or not installed.

  2. In Real Time Scanning, choose Enabled or Disabled to activate or deactivate real-time malware scanning.

  3. Choose the anti-malware vendor from the Vendor drop-down list.

  4. Choose the anti-malware description from the Product Description drop-down list.

  5. Choose the Version of the anti-malware product.

  6. Specify the number of days since the Last Update.

    You can indicate that an anti-malware update must occur in less than (<) or more than (>) the number of days you specify.

  7. Click Save.