Alert Based Admission Control
Overview
Ivanti Policy Secure(Ivanti Policy Secure) integration with PAN next generation firewall provide user access control based on the threats identified by the network security devices. The network security device provides intelligence driven detection of threats based on the intrusion prevention system. This helps in detecting the unknown threats and reduces the false alarms. The PAN Next Generation Firewall uses the syslog events to notify the other devices regarding the network threats. Ivanti Policy Secure also supports dynamically changing the access to the user based on the information received from the PAN Next Generation Firewall.
The admission control user flow is as follows:
-
The user logs into the Ivanti Policy Secure and a corresponding session is created on Ivanti Policy Secure.
-
The user starts accessing the resources and tries to access a restricted website or application.
-
The PAN Next Generation Firewall identifies it as threat and generates a corresponding syslog event and sent to Ivanti Policy Secure.
-
Ivanti Policy Secure receives the threat information and based on the policies configured it modifies the user access. For example, changing user access, terminating user access and so on.