IAG Restricting Devices

JD Lv1Posted 2023-Apr-27 17:02

Last edited by JD 27 Apr 2023 18:24.

How to Restrict devices per user on Sangfor IAG ?
Edited
Is there any way to restrict specific devices for users (bind specific devices for users so that they cant user other devices.)

faysalji has solved this question and earned 10 coins.

Posting a reply earns you 2 coins. An accepted reply earns you 20 coins and another 10 coins for replying within 10 minutes. (Expired) What is Coin?

Enter your mobile phone number and company name for better service. Go

Yes, it is possible to restrict specific devices for users on Sangfor IAG (Internet Access Gateway). You can achieve this through the Device Compliance feature in Sangfor IAG. The Device Compliance feature ensures that only compliant devices can access the network resources, and non-compliant devices are either blocked or quarantined.

To restrict specific devices for users on Sangfor IAG, follow the steps below:

Login to the Sangfor IAG management console.
Click on the "Policy" menu on the left-hand side and select "Device Compliance" from the sub-menu.
Click on the "Add" button to create a new Device Compliance policy.
Give the policy a name and a description.
Select the user or user group that you want to restrict to specific devices.
Under the "Device Rule" section, select the "Bind Device" rule option.
Enter the MAC address of the specific device that you want to bind to the user.
Save the policy.
Once the policy is saved, the user will only be able to access the network resources if they are using the bound device with the specified MAC address. If they try to access the network resources from any other device, they will be blocked or quarantined based on the policy configuration.

Note that you will need to have the appropriate permissions to create and configure Device Compliance policies in Sangfor IAG.
Is this answer helpful?
RegiBoy Lv5Posted 2023-Apr-28 15:27
  
Yes, it is possible to restrict specific devices for users in Sangfor IAG. Sangfor IAG provides device access control features that allow administrators to control which devices users can access when connecting to the corporate network. Here are the general steps to restrict specific devices for users:

1.Log in to the Sangfor IAG web console and navigate to the "Device Access Control" page.
2.Click on "Device Policy" and select "Add" to create a new device policy.
3.In the device policy configuration, specify the devices that the user is allowed to access by adding their MAC addresses or specifying the device type (e.g., iPhone, Android phone).
4.Specify the users or user groups that the device policy applies to.
5.Save the device policy configuration and apply the changes.

Once the device policy is created and applied, the specified users or user groups will only be able to access the allowed devices when connecting to the corporate network through Sangfor IAG. If they try to connect to a device that is not allowed, they will be denied access.

It is worth noting that the specific steps to configure device access control may vary slightly depending on the Sangfor IAG model and firmware version. Therefore, it is recommended to refer to the product documentation or contact Sangfor support for further assistance if needed.
Faisal Piliang Posted 2023-Apr-28 23:58
  
Hi,
On the Authentication Policy page, you can specify a list of IP addresses or MAC addresses that  cannot pass authentication on the IAM thereby restricting these users from Internet access.
Thanks
Zonger Lv5Posted 2023-Apr-29 04:52
  
To restrict devices per user on Sangfor IAG, you can follow these steps:

Log in to the Sangfor IAG web management console as an administrator.

Go to "User Management" and select "User/Group."

Select the user or group that you want to restrict devices for and click on the "Edit" button.

Under "Client Management," select the "Allow Login Client" option and choose the client devices that the user or group can use.

If you want to restrict the user or group from using specific client devices, select the "Disallow Login Client" option and choose the client devices that the user or group cannot use.

Click "Save" to apply the changes.

Note that you can also configure device access control policies for specific applications or services. To do this, go to "Policy Management" and select "Application Control." Create a new policy or edit an existing policy, and configure the device access control settings for the application or service.

Keep in mind that these settings may vary depending on the version of Sangfor IAG you are using. It is recommended to refer to the official documentation or contact Sangfor support for further assistance.
faysalji Lv3Posted 2023-May-02 17:50
  
Yes, it is possible to restrict specific devices for users on Sangfor IAG (Internet Access Gateway). You can achieve this through the Device Compliance feature in Sangfor IAG. The Device Compliance feature ensures that only compliant devices can access the network resources, and non-compliant devices are either blocked or quarantined.

To restrict specific devices for users on Sangfor IAG, follow the steps below:

Login to the Sangfor IAG management console.
Click on the "Policy" menu on the left-hand side and select "Device Compliance" from the sub-menu.
Click on the "Add" button to create a new Device Compliance policy.
Give the policy a name and a description.
Select the user or user group that you want to restrict to specific devices.
Under the "Device Rule" section, select the "Bind Device" rule option.
Enter the MAC address of the specific device that you want to bind to the user.
Save the policy.
Once the policy is saved, the user will only be able to access the network resources if they are using the bound device with the specified MAC address. If they try to access the network resources from any other device, they will be blocked or quarantined based on the policy configuration.

Note that you will need to have the appropriate permissions to create and configure Device Compliance policies in Sangfor IAG.
Farina Ahmed Lv5Posted 2023-May-02 18:15
  
Yes by using users or group policies we can restrict certain devices to gain access. Even we can do grant limited privilege's to admins so they cannot access all rights of using or configuring certain devices. Sangfor IAG can do this as well as it has policy tab.
CLELUQMAN Lv4Posted 2023-May-03 12:30
  
u can do User Binding and IP MAC binding ,
follow this
https://community.sangfor.com/fo ... wthread&tid=482
Pat Lv4Posted 2023-May-04 11:20
  
Yes, Sangfor NGAF has a feature called "Device Binding" that allows you to bind specific devices to users, preventing them from using other devices to access the network
Bojie186 Lv1Posted 2023-May-04 11:29
  
Sangfor NGAF offers a feature called "MAC binding" that allows you to restrict specific devices for users. MAC binding is a technique that binds a specific MAC address to a specific IP address. By using MAC binding, you can ensure that only the authorized devices are allowed to access the network, while unauthorized devices are blocked.
letlet Lv1Posted 2023-May-04 11:39
  
Sangfor IAG (Internet Access Gateway) provides a feature that allows administrators to restrict devices per user. Here are the steps to configure device restriction:

1. Log in to the Sangfor IAG web management interface.
2. Go to "Access Control" > "Device Restriction" > "Device Management".
C3. lick "Add" to create a new device restriction policy.
4. In the "User Group" field, select the user group that you want to restrict devices for.
5. In the "Device List" field, select the devices that you want to restrict for the selected user group. You can add devices by clicking the "Add" button and entering their MAC address or IP address.
6. Click "Save" to save the device restriction policy.

I Can Help:

Change

Moderator on This Board

1
3
5

Started Topics

Followers

Follow

Board Leaders