Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
0
Helpful
1
Replies

ISE integraion with MDM

Go to solution
henokk601
Level 1
Level 1

‎09-19-2019 05:13 AM

i have ISE integrated with MDM server and a device that has already authenticated on the network, and stays connected, but fails out of compliance what will be the measure I have to take to ensure that a noncompliant device is checked periodically and re-assessed before allowing access to the network?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎09-19-2019 05:26 AM

Hi,

ISE should periodically poll the MDM server for compliance information, if there is a change to the compliance state a CoA should be issued by ISE - causing the user to re-authorise and potentially match a different Authorisation rule.

 

Reference here and here

 

HTH

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎09-19-2019 05:26 AM

Hi,

ISE should periodically poll the MDM server for compliance information, if there is a change to the compliance state a CoA should be issued by ISE - causing the user to re-authorise and potentially match a different Authorisation rule.

 

Reference here and here

 

HTH

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents