Cisco ASA 5505 Configuration Manual page 1430
Asa 5500 series
Hide thumbs
Also See for ASA 5505:
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages) ,
- Hardware installation manual (82 pages)
Table of Contents
Advertisement
Understanding VPN Access Policies
Endpoint Attribute Definitions
Table 65-3
Name field shows you how to enter each attribute name in a Lua logical expression, which you might do
in the Advanced area in the Add/Edit Dynamic Access Policy pane. The label variable identifies the
application, filename, process, or registry entry.
Table 65-3
Endpoint Attribute Definitions
Attribute Type Attribute Name
Antispyware
endpoint.as["label"].exists
(Requires
endpoint.as["label"].version
Cisco Secure
endpoint.as["label"].description
Desktop)
endpoint.as["label"].lastupdate
Antivirus
endpoint.av["label"].exists
endpoint.av["label"].version
(Requires
Cisco Secure
endpoint.av["label"].description
Desktop)
endpoint.av["label"].lastupdate
Application
endpoint.application.clienttype
File
endpoint.file["label"].exists
endpoint.file["label"].lastmodifi
ed
endpoint.file["label"].crc.32
NAC
endpoint.nac.status
Operating
endpoint.os.version
System
endpoint.os.servicepack
Personal
endpoint.fw["label"].exists
firewall
endpoint.fw["label"].version
(Requires
endpoint.fw["label"].description
Secure
Desktop)
Policy
endpoint.policy.location
Process
endpoint.process["label"].exists Secure
endpoint.process["label"].path
Cisco ASA 5500 Series Configuration Guide using ASDM
65-6
defines the endpoint selection attribute names that are available for DAP use.The Attribute
Source
Host Scan
Host Scan
Application
Secure
Desktop
NAC
Secure
Desktop
Host Scan
Secure
Desktop
Desktop
Chapter 65
Max
String
Value
Length Description
true
—
Antispyware program exists
string
32
Version
string
128
Antispyware description
integer
—
Seconds since update of antispyware
definitions
true
—
Antivirus program exists
string
32
Version
string
128
Antivirus description
integer
—
Seconds since update of antivirus
definitions
string
—
Client type:
CLIENTLESS
ANYCONNECT
IPSEC
L2TP
true
—
The files exists
integer
—
Seconds since file was last modified
integer
—
CRC32 hash of the file
string
—
User defined status string
string
32
Operating system
integer
—
Service pack for Windows
true
—
The personal firewall exists
string
32
Version
string
128
Personal firewall description
string
64
Location value from Cisco Secure
Desktop
true
—
The process exists
string
255
Full path of the process
Configuring Dynamic Access Policies
OL-20339-01
- Quick Links:
- Starting Asdm
- Downloading the Asdm Launcher
Hide quick links:
Advertisement
Chapters
Table of Contents
