Endpoint Protection

 View Only

  • 1.  Creating time based policies, is it Possible?

    Posted Mar 18, 2009 05:45 AM

    As we all know, we can create location based policies, which applies mostly depending on some network modifications conditions.

    Is there a way, to create policies that apply for a certain period of time (i.e. working hours), where another policy is applied after working hours? based on time instead of network conditions, can this be done somehow?

     

    please advice.



  • 2.  RE: Creating time based policies, is it Possible?

    Posted Mar 18, 2009 09:01 AM

    I don't think it's possible directly. You could use locations creatively but it might not stand up to audit - it depends what your industry is and how robustly you want this enforced.

    For example, if you have a machine which is only on during working hours or can spin up a VM, write it into your location detection. When it is off, location awareness would detect a condition which is notionally "not working hours". It won't be absolute and will fail if you bring the machine online for maintenance, but it might be good enough.



  • 3.  RE: Creating time based policies, is it Possible?

    Posted Mar 18, 2009 09:18 AM

    You can make different rules for different times in firewall policy, so for example HTTP is only allowed after 5 P.M.

    - Jukka



  • 4.  RE: Creating time based policies, is it Possible?

    Posted Mar 20, 2009 02:00 AM

    I'd need to re-look at our location awareness triggers. If you can specify something that a scheduled job (using 'at' maybe) could set, you could use that to create a policy, assign it to a location. When a reg value is 1, policy A is used. When reg value is 2, policy B is used. Using 'at' scheduling, you could set the reg value based on the time.

    Disclaimer: Not sure our location awareness supports reg values or any other external item that could be set ... The suggestion clearly only works if we have that feature :-)