Alert Based Admission Control
Overview
Pulse Policy Secure(PPS) integration with PAN next generation firewall provide user access control based on the threats identified by the network security devices. The network security device provides intelligence driven detection of threats based on the intrusion prevention system. This helps in detecting the unknown threats and reduces the false alarms. The PAN Next Generation Firewall uses the syslog events to notify the other devices regarding the network threats. PPS also supports dynamically changing the access to the user based on the information received from the PAN Next Generation Firewall.
The admission control user flow is as follows:
1.The user logs into the PPS and a corresponding session is created on PPS.
2.The user starts accessing the resources and tries to access a restricted website or application.
3.The PAN Next Generation Firewall identifies it as threat and generates a corresponding syslog event and sent to PPS.
4.PPS receives the threat information and based on the policies configured it modifies the user access. For example, changing user access, terminating user access and so on.