HP Identity Driven Manager Software Series User Manual

3-40

Using Identity Driven Manager
Defining Access Policy Groups

Figure 3-29. Access Rule with Endpoint Integrity options

Select the Endpoint Integrity option to use with the access rule, as described
i the following list.

•

Select

ANY

to apply the access rule regardless of the status passed

from the endpoint integrity system.

•

Select

PASS

to apply the access rule in cases where the system the

user is logged in on passes the endpoint integrity check.

•

Select

FAIL

to apply the access rule in cases where the system the user

is logged in on fails the endpoint integrity check.

•

Select

INFECTED

to apply the access rule in cases where the system

the user is logged in on has been identified as infected by the endpoint
integrity system.

•

Select

UNKNOWN

to apply the access rule in cases where the system

the user is logged has an endpoint integrity status setting of
"unknown".

For example, if you want to restrict access to a specific (remediation) VLAN
when the endpoint integrity check fails, create a Location that specifies the
remediation VLAN, then create an access rule that will put the user on that
Location if the Host Integrity value is

FAIL

.