cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
503
Views
0
Helpful
3
Replies

AuthZ Policy using specific Endpoint Identity Groups

I am trying to create an AuthZ policy that will identify if a device is in specific Endpoint Identity Group.  See policy below.

I used the IdentityGroup:Name attribute Equals the Identity Group MAB_Devices.  Please note that there are NO Identity groups listed in the dropdown options, so I typed in the name.   Alas, the rule is not working.   Anyone have advise on what I am doing wrong?  Thx

 

1 Accepted Solution

Accepted Solutions

jj27
Spotlight
Spotlight

You can choose the Endpoint Identity Group on the Authorization Policy before you specify any conditions. Will that meet your requirements?

Where it says If [Any] and [Conditions] when you create a new rule.

View solution in original post

3 Replies 3

jj27
Spotlight
Spotlight

You can choose the Endpoint Identity Group on the Authorization Policy before you specify any conditions. Will that meet your requirements?

Where it says If [Any] and [Conditions] when you create a new rule.

Yes, thank you.  That worked!

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: