Secure Mobile Access 12.4 Administration Guide

Defining Device Profiles for a Zone

A device profile establishes a trust relationship with a client device by looking for one or more attributes, such as an antimalware program, application, or Windows registry entry. Device profiles can be referenced by one or more zones.

A device profile can be defined to detect only one attribute on a client computer, or it can require multiple attributes. When a device profile references multiple attributes, each of those attributes must be present on a client computer for there to be a match.

For information on how to copy or delete a device profile, see Adding, Editing, Copying, and Deleting Objects in AMC.

To define a device profile for a zone

  1. In the AMC, navigate to User Access > End Point Control.

    The End Point Control page displays.

  2. In the Zones and Profiles section, click Edit next to Profiles.

    The Zones and Profiles page displays.

  3. Click the + (New) icon.

  4. Select one of the SMA EPC-supported device profiles:

    • Windows

    • Mac OS

    • Linux

    • iOS

    • Android

    • ChromeOS

    • Exchange ActiveSync

    • Other mobile device

      You can also match a policy as a Platform in an Access Control Rule, which does not require End Point Control.

    The Add Device Profile page displays. The available options will depend on the device profile you selected.

    Device Profile Definition for Microsoft Windows

    Device Profile Definition for ChromeOS

  5. In the Name field, enter a name for the device profile.

  6. (Optional) In the Description field, enter a descriptive comment about the device profile.

  7. From the Value section, select the attributes that you want for the device profile.

  8. After selecting each attribute, click Add to Current Attributes.

    The attribute is added to the Current attributes list at the bottom of the page.

    • The available attributes depend on the device profile you selected; Antimalware program and Personal Firewall Program is available only for users who are licensed with Advanced EPC feature.
    • Where multiple entries are allowed for an attribute, note whether a device profile must match all (and) or match any (or) items on the device.

    Detailed descriptions of the attributes and the platforms on which they are available are inDevice Profile Attributes.

  9. Click Save.

To choose a Client Platform in Access Control Rules

  1. In the AMC, navigate to Security Administration > Access Control.

    The Access Control page displays.

  2. Click on the access control rule you want to edit.

    The Edit Access Rule page displays.

  3. Click the Advanced tab.

  4. Under Client platforms:

    1. Click Selected option and choose the required client platform.

  5. Click Save.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.