Which policy selects the agent that should be used for the posture check on the connecting endpoint?
The correct answer and explanation is:
Correct Answer: Posture Token Policy
Explanation:
In network access control systems—especially those used in Zero Trust and VPN architectures—a posture check is a security mechanism used to evaluate the health or compliance state of an endpoint before granting it access to a network. The Posture Token Policy (sometimes called a posture assessment or endpoint compliance policy) is responsible for determining which agent or method should be used to assess the posture of the connecting endpoint.
What is a Posture Check?
A posture check evaluates several parameters on the client device, such as:
- Presence of updated antivirus software
- Operating system patch level
- Device encryption status
- Firewall settings
- Presence of specific applications or processes
This check is vital for ensuring that only compliant and secure devices are allowed to access sensitive network resources.
What is the Role of a Posture Token Policy?
The Posture Token Policy defines:
- Which agent (e.g., AnyConnect, GlobalProtect, FortiClient, etc.) is required for posture evaluation
- The conditions under which the posture assessment will be triggered
- What type of posture tokens are acceptable (e.g., tokens issued after a successful posture check)
- Fallback or remediation options if the check fails
Once an endpoint connects, the posture token policy tells the system which agent or method to use for checking that endpoint’s compliance. The system then assigns a posture token if the check is passed. This token is used in subsequent policy decisions.
Summary
The Posture Token Policy selects the agent or mechanism to be used for performing posture checks on connecting endpoints. It is central to enforcing compliance and security in systems using endpoint health validation.