SSL VPN
Reply
Contributor
futuretec
Posts: 95
Registered: ‎12-10-2008
0
Accepted Solution

a question regarding host checker ?

a have a small question a customer asked me while i was doing  a poc, if a user enable the antivirus for the host checker and once he passed the host checker he disabled his AV what will happen then ?

 

am not sure about this answer does anybody know ?

Distinguished Expert
firewall72
Posts: 825
Registered: ‎05-04-2008
0

Re: a question regarding host checker ?

Hi,

 

You can configure Host Checker to re-check as needed.  This setting is configured on the Host Checker Tab in Endpoint Security.  You can also enable "Dynamic Policy Re-evaluation".  This will refresh the roles after the Host Checker policy completes.  For example, user A fails the HC Policy at logon because there AV is out-of-date.  However, they get mapped to a more restrictive role and you permit access.  While they're logged in, their AV is updated.  Since you have "Perform check every" 10 minutes configured, the HC Policy will run again, and this time the user passes the HC policy.  You also have the "Dynamic Policy Re-evaluation" enabled, so the HC Policy role is refreshed and new resources mapped.

 

Does this help?

 

-John

John Judge
JNCIS-SEC, JNCIS-ENT,

If this solves your problem, please mark this post as "Accepted Solution". Kudos are appreciated.
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.