07-17-2017 08:48 PM
Our company plan to deploy ISE. According to the demo. of ISE by Cisco engineer, it takes time for ISE to conduct security policy enforcement and compliance check on endpoints after the successful authantication.
Some of our impatient users asked that can they use the PC to work, such as open and view a WORD document, write an email etc, when the ISE is checking the security compliance of the PC after the successful authantication.
Thank you.
Solved! Go to Solution.
07-18-2017 03:49 AM
Compliance check times will depend on type of checks--Posture, MDM, VA scanning, etc. In general, if a limited access policy has been applied during the assessment phase, then you can make a security policy decision as to allowable access in the assessment phase. They can certainly open local apps, but network communication will be governed by YOUR policy.
07-18-2017 03:49 AM
Compliance check times will depend on type of checks--Posture, MDM, VA scanning, etc. In general, if a limited access policy has been applied during the assessment phase, then you can make a security policy decision as to allowable access in the assessment phase. They can certainly open local apps, but network communication will be governed by YOUR policy.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide