Preparing Access Control using IPAM

You can enable enforcement by enabling the Unauthorized Device default policy, and changing the default policies on each individual sensor.

To Enable "Unauthorized Device" Policy

By default, the “Unauthorized Device” enforcement policy is disabled. Before controlling nodes using the Policy, the enforcement policy for “Unauthorized Device” must be enabled.

  1. Go to Policy in the top panel
  2. Go to Enforcement Policy in the left Policy panel
  3. Click Unauthorized Device name in the Enforcement Policy window
  4. Find General > Status section to Enabled
  5. Click Update
  6. Click Apply in top right corner

Changing IP Management New Node Policy

Each network sensor has a New Node Policy under IP Management. When a new node is detected by the network sensor, or when an IP or MAC address is discovered on the network for the first time, the New Node Policy is automatically applied.

  • Block MAC: Blocks the MAC address.
  • Block IP: Blocks the IP address.
  • Block IP/MAC: Blocks both IP and MAC addresses.
  • Allow Mode: Allows both IP and MAC addresses. (Default option)
  • No Change Mode: Sets the node’s MAC address to No Change mode.
  • Conflict Protection Mode: Sets the node’s IP address to Conflict Protection mode.

Changing the New Node Policy on Network Sensors

You can change the New Node Policy in the settings of each network sensor.

  1. Go to the System tab at the top menu.
  2. Navigate to System > Sensor Management from the left panel.
  3. Click the IP Address of the sensor you wish to configure.
  4. Click the ... icon at the top right and select Sensor Settings.
  5. In the IP Management section at the bottom, change the New Node Policy.
  6. Click the Modify button to save the changes.