1. Manuals
  2. Brands
  3. ADTRAN Manuals
  4. Controller
  5. BlueSecure Controller
  6. Setup and administration manual

Assigning A Blueprotect Policy To A User Role; Mobility Matrix; Client Examples - ADTRAN BlueSecure Controller Setup And Administration Manual

Software release version: 6.5
Hide thumbs
Table of Contents

Advertisement

without credentials from getting to Remediation sites (which could be internet sites or
internal resources).

Assigning a BlueProtect Policy to a User Role

You need to edit user roles on the BSC to enable/disable BlueProtect scanning for each
role and to specify the frequency at which users authenticated into that role will have their
devices scanned.
Click the User Roles, Roles tab from any BSC administrator console page, and repeat the
following steps for each role on the BSC for which you wish to enable BlueProtect
scanning:
Click the
1.
Enable BlueProtect scanning for the role by specifying the frequency at which a user
2.
authenticated into the role will have his or her device scanned by selecting an option
from the BlueProtect Endpoint Scanning drop-down menu. Possible scan frequency
settings are:
From the BlueProtect Policy drop-down list, select the name of the security policy you
3.
want to apply to this role (the policy must have already been configured as explained
in "Creating a BlueProtect Policy" on page C-5).A role can only use one policy, but a
single policy can be applied to many roles.
Click Save to store the role settings to the BSC database.
4.

Mobility Matrix

For a Mobility Matrix, note the following:
Every node must have a BlueProtect license
In case of replication/load sharing, the security policies can only be created in the
master.
In failover, licenses are needed on both the master and the failover controller.
On each node that has a license, go to Replication Setup page, select Replication
Node checkbox, and then select Acquire a snapshot from the master, to push out the
BlueProtect policy to the nodes.

Client Examples

This following figure shows what the display on the client looks like if the security products
specified by the BlueProtect policy for that user are not installed:
If a client can't pass a BlueProtect scan, the admin could allow the user into a different
role and bypass BlueProtect. An admin could use the Admin Override feature to change
the role of the user. The admin should create another similar role with BlueProtect
disabled, and then move the effected user into that role using the Admin Override feature,
as shown in Figure C-4.
BlueSecure™ Controller Setup and Administration Guide
icon corresponding to role you wish to edit.
Every Time
Once a day
Once a week
Once a month
Every 45 days
Every 90 days
Assigning a BlueProtect Policy to a User Role
C-9

Advertisement

Table of Contents
loading

Related Manuals for ADTRAN BlueSecure Controller

Related Content for ADTRAN BlueSecure Controller

Table of Contents