Configuring Access Guardian Access Guardian Application Examples
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 28-108
UNP Profile - Location Policy
A location-based policy is associated with a UNP profile to define a specific location from which a device
can access the network. When a user classified into the UNP profile violates the location policy, the user is
moved into an Unauthorized role.
There is a built-in policy-list associated with the Unauthorized role that can be replaced with a user-
defined policy list. The following OmniSwitch configuration demonstrates assigning a different role to a
user in an Unauthorized state as well as an example of configuring time based policies:
1 Create different location policies as required. Different location policies can be defined and assigned to
different UNP profiles.
-> unp policy validity-location employee-location port 1/1/1-24
-> unp policy validity-location guest-location port 1/1/15-24
2 Assign the location policies created in Step 1 to an existing UNP Edge profile.
-> unp profile UNP-employee location-policy employee-location
-> unp profile UNP-guest period-policy guest-location
3 Assign a new policy list to replace the built-in policy list for the Unauthorized role.
-> unp restricted-role unauthorized policy-list unauthorized-location.
To Next Page
Loading...
