6.
Configure the configure customized requirements using custom rules using the settings
described in Table 67 on page 242.
7.
Click one:
•
OK
—Saves the changes.
•
Cancel
—Cancels the modifications.
Table 67: Configuring Host Checker Customized Requirements Using
Custom Rules Details
Your Action
Function
Option
Settings tab
1.
Enter the rule name.
2. Select the
IMV
.
3. Click
OK
.
IMV—Use this rule type to
configure integrity measurement
software that a client must run to
verify a particular aspect of the
client’s integrity, such as the
client’s operating system, patch
level, or virus protection.
Remote
IMV Rules
1.
Enter the rule name, vendor name, and the
path to NHC DLL on client machines.
2. Select the
Monitor this rule for change in
result
check box to continuously monitor
the policy compliance of endpoints.
3. Click
OK
.
(Windows only)—Use this rule
type to specify the location of a
custom DLL. Host Checker calls
the DLL to perform customized
client-side checks. If the DLL
returns a success value to Host
Checker, then the Secure Access
device considers the rule met.
NHC Rules
1.
Enter the rule name.
2. Select the
Required
option to specify that
these ports are open or closed.
3. Enter a comma delimited port list (without
spaces) of ports or port ranges, such as:
1234,11000-11999,1235
.
4. Click
Ok
.
Use this rule type to control the
network connections that a client
can generate during a session.
This rule type ensures that certain
ports are open or closed on the
client machine before the user can
access the Secure Access device.
Ports
Rules
1.
Enter the rule name.
2. Select the
Required
option to specify that
these ports are open or closed.
3. Enter the process name (executable file),
such as:
good-app.exe
.
4. Enter the MD5 checksums value of each
executable file to which you want the policy
to apply (optional).
5. Select the
Monitor this rule for change in
result
check box to continuously monitor
the policy compliance of endpoints.
6. Click
OK
.
Use this rule type to control the
software that a client may run
during a session. This rule type
ensures that certain processes are
running or not running on the
client machine before the user can
access resources protected by the
Secure Access device.
Process
Rules
Copyright © 2010, Juniper Networks, Inc.
242
Configuring Secure Access Devices Guide
Summary of Contents for NETWORK AND SECURITY MANAGER
Page 6: ...Copyright 2010 Juniper Networks Inc vi...
Page 12: ...Copyright 2010 Juniper Networks Inc xii Configuring Secure Access Devices Guide...
Page 18: ...Copyright 2010 Juniper Networks Inc xviii Configuring Secure Access Devices Guide...
Page 20: ...Copyright 2010 Juniper Networks Inc 2 Configuring Secure Access Devices Guide...
Page 28: ...Copyright 2010 Juniper Networks Inc 10 Configuring Secure Access Devices Guide...
Page 40: ...Copyright 2010 Juniper Networks Inc 22 Configuring Secure Access Devices Guide...
Page 46: ...Copyright 2010 Juniper Networks Inc 28 Configuring Secure Access Devices Guide...
Page 50: ...Copyright 2010 Juniper Networks Inc 32 Configuring Secure Access Devices Guide...
Page 52: ...Copyright 2010 Juniper Networks Inc 34 Configuring Secure Access Devices Guide...
Page 82: ...Copyright 2010 Juniper Networks Inc 64 Configuring Secure Access Devices Guide...
Page 110: ...Copyright 2010 Juniper Networks Inc 92 Configuring Secure Access Devices Guide...
Page 154: ...Copyright 2010 Juniper Networks Inc 136 Configuring Secure Access Devices Guide...
Page 224: ...Copyright 2010 Juniper Networks Inc 206 Configuring Secure Access Devices Guide...
Page 234: ...Copyright 2010 Juniper Networks Inc 216 Configuring Secure Access Devices Guide...
Page 288: ...Copyright 2010 Juniper Networks Inc 270 Configuring Secure Access Devices Guide...
Page 300: ...Copyright 2010 Juniper Networks Inc 282 Configuring Secure Access Devices Guide...
Page 310: ...Copyright 2010 Juniper Networks Inc 292 Configuring Secure Access Devices Guide...
Page 312: ...Copyright 2010 Juniper Networks Inc 294 Configuring Secure Access Devices Guide...
Page 320: ...Copyright 2010 Juniper Networks Inc 302 Configuring Secure Access Devices Guide...
Page 322: ...Copyright 2010 Juniper Networks Inc 304 Configuring Secure Access Devices Guide...
Page 337: ...PART 6 Index Index on page 321 319 Copyright 2010 Juniper Networks Inc...
Page 338: ...Copyright 2010 Juniper Networks Inc 320 Configuring Secure Access Devices Guide...
Page 340: ...Copyright 2010 Juniper Networks Inc 322 Configuring Secure Access Devices Guide...