Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
433
Views
0
Helpful
0
Replies

Posture Check for Domain Machine

zephyranthes
Level 1
Level 1

‎12-01-2013 11:03 PM - edited ‎03-10-2019 09:08 PM

Hi,

i am setting up an ISE for dot1x and posture checking, I am unable to find a way to check for a policy whereby the laptop/workstation is a domain machine. So far, the rules and config guides are looking at ExternalGroups member of, but these are the log in credentials of the user and they can still pass the rule eventhough the machine is not a domain machine.

There is a registry key for domain machine, but this check is too easy to spoof. Is there any more effcient and "better" way to check for domain machine for posture check?

Thanks and regards,

WK Peck

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents