Create a Dynamic Access Policy Record
A dynamic access policy (DAP) can contain multiple DAP records, where you configure user and endpoint attributes. You can prioritize the DAP records within a DAP so that the threat defense can select and sequence the required criteria when a user attempts VPN connection.
Procedure
Step 1 | Choose . |
Step 2 | Edit an existing dynamic access policy or click Create Dynamic Access Policy to create a new one and then edit the policy. |
Step 3 | Click Create DAP Record. |
Step 4 | Click the General tab. |
Step 5 | Specify the Name for the DAP record. |
Step 6 | Enter the Priority for the DAP record. The lower the number, the higher the priority. |
Step 7 | Select one of the following actions to take when a DAP record matches:
|
Step 8 | Check the Display User Message on Criterion Match check-box and add the user message. The threat defense displays this message to the user when the DAP record matches. |
Step 9 | Check the Apply a Network ACL on Traffic check-box and select the access control list from the drop-down. |
Step 10 | Check the Apply one or more Secure Client Custom Attributes check-box and select the custom attributes object from the drop-down. |
Step 11 | Click Save. |