How to Configure and Test Recurring End Point Control

Description:

Recurring EPC is a feature that was introduced in appliance version 10.0.0. Aventail End Point Control allows the admin to check for personal firewall, applications, registry keys, etc. on a client machine and classify that machine into a particular zone. Prior to 10.0.0, EPC only ran when a user logged into the appliance.  Recurring EPC allows EPC to run periodically after login to check if the machine still meets EPC requirements. If there is any change after the user connects to the Aventail appliance then the session is terminated.

This article describes how to configure Recurring EPC, and how it would function if the user is reclassified. In the example before, we will show how to configure Recuring EPC and show what the user will see when recurring EPC detects that the user's zone classification has changed.

Configuring Recurring EPC

1. In AMC under End Point Control go to the Device Profile tab and create a new profile to check for the application notepad.exe.
2. Create a new Standard Zone under End Point Control and assosiate the notepad device profile created above to that zone.
3. Under Recurring EPC section set the value to 5 minutes (or any specific value you desire) as shown in the screenshot below:
   
4. Save and Apply changes

Testing Recurring EPC From a Client System

1. Log in from a client machine with the required application (notepad.exe, in this case) to get into the zone you just created.
2. After logging into WorkPlace, close notepad.exe. After the set interval, when EPC re-evaluates your system, it will find that Notepad is no longer running. EPC will terminate the session with a message:
   Your session has been terminated because of a chnage in your system. Please contact Administrator for more information
    

Additional info:

More about Recurring EPC can be found in Chapter 8 of the Installation and Administration guide.