Secure Mobile Access 12.4 Administration Guide

Enabling and Disabling End Point Control

You can globally enable or disable End Point Control in AMC. Here are two examples of situations where you might want to temporarily disable EPC:

  • You have upgraded your version of antimalware software company-wide from version 2.x to 3.x. You could temporarily disable EPC in order to change the device profile that specifies the antimalware software.

  • You can create new device profiles and zones on a production appliance without disrupting users.

When End Point Control is disabled (which is the default setting), the appliance does not perform the following EPC actions:

  • Evaluate the attributes of client devices

  • Classify connection requests into zones

  • Enforce zone restrictions in access control rules

If End Point Control is disabled, settings for the Default Zone are applied to all user sessions because, with End Point Control disabled, all users are put in the Default Zone.

To enable End Point Control

  1. In the AMC, navigate to User Access > End Point Control.

  2. In the General section, click Edit.

    The End Point Control Settings page displays.

  3. Select Enable End Point Control.

  4. Click Save.

When EPC is enabled, you can specify (on a per-zone basis) how often EPC checks are done: only once (at login), or at login and then every <n> minutes for the duration of the session. See Creating a Device Zone or Configuring the Default Zone for more information.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.