Manualshelf

Hardware reference guide

ManualsBrandsAlto ManualsComputer equipmentBEXT 100H
141142143144145146147148149150
GlobalProtect Administrator’s Guide 139
Use Host Information in Policy Enforcement Configure HIP-Based Policy Enforcement
Step 9 Create the HIP-enabled security rules on
your gateway(s).
As a best practice, you should create your
security rules and test that they match the
expected flows based on the source and
destination criteria as expected before
adding your HIP profiles. By doing this
you will also be better able to determine
the proper placement of the HIP-enabled
rules within the policy.
Add the HIP profiles to your security rules:
1. Select
Policies > Security and select the rule to which you want
to add a HIP profile.
2. On the
Source tab, make sure the Source Zone is a zone for
which you enabled User-ID in Step 7.
3. On the
User tab, click Add in the HIP Profiles section and select
the HIP profile(s) you want to add to the rule (you can add up
to 63 HIP profiles to a rule).
4. Click
OK to save the rule.
5.
Commit your changes.
Enable HIP Checking (Continued)