Defining Device Profiles for a Zone
A device profile establishes a trust relationship with a client device by looking for one or more attributes, such
as an antimalware program, application, or Windows registry entry. Device profiles can be referenced by one or
A device profile can be defined to detect only one attribute on a client computer, or it can require multiple
attributes. When a device profile references multiple attributes, each of those attributes must be present on a
client computer for there to be a match.
For information on how to copy or delete a device profile, see Adding, Editing, Copying, and Deleting Objects in AMC.
To define a device profile for a zone
In the AMC, navigate to User Access > End Point Control.
The End Point Control page displays.
In the Zones and Profiles section, click Edit next to Profiles.
The Zones and Profiles page displays.
Click the + (New) icon.
Select one of the SMA EPC-supported device profiles:
The Add Device Profile page displays. The available options will depend on the device profile you
Device Profile Definition for Microsoft Windows
Device Profile Definition for ChromeOS
In the Name field, enter a name for the device profile.
(Optional) In the Description field, enter a descriptive comment about the device profile.
From the Value section, select the attributes that you want for the device profile.
After selecting each attribute, click Add to Current Attributes.
The attribute is added to the Current
attributes list at the bottom of the page.
- The available attributes depend on the device profile you selected; Antimalware program and Personal Firewall Program is available only for users who are licensed with Advanced EPC feature.
- Where multiple entries are allowed for an attribute, note whether a device profile must match all (and) or match any (or) items on the device.
Detailed descriptions of the attributes and the platforms on which they are available are inDevice Profile Attributes.
To choose a Client Platform in Access Control Rules
In the AMC, navigate to Security Administration > Access Control.
The Access Control page displays.
Click on the access control rule you want to edit.
The Edit Access Rule page displays.
Click the Advanced tab.
Under Client platforms:
Click Selected option and choose the required client platform.
Was This Article Helpful?
Help us to improve our support portal