cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

288
Views
0
Helpful
3
Replies
Bransomar
Beginner

AuthZ Policy using specific Endpoint Identity Groups

I am trying to create an AuthZ policy that will identify if a device is in specific Endpoint Identity Group.  See policy below.

I used the IdentityGroup:Name attribute Equals the Identity Group MAB_Devices.  Please note that there are NO Identity groups listed in the dropdown options, so I typed in the name.   Alas, the rule is not working.   Anyone have advise on what I am doing wrong?  Thx

 

1 ACCEPTED SOLUTION

Accepted Solutions
jj27
Rising star

You can choose the Endpoint Identity Group on the Authorization Policy before you specify any conditions. Will that meet your requirements?

Where it says If [Any] and [Conditions] when you create a new rule.

View solution in original post

3 REPLIES 3
jj27
Rising star

You can choose the Endpoint Identity Group on the Authorization Policy before you specify any conditions. Will that meet your requirements?

Where it says If [Any] and [Conditions] when you create a new rule.

View solution in original post

Yes, thank you.  That worked!

Content for Community-Ad