About Endpoint Requirements in Access Rules

🚧

Important note about traffic handling

If endpoints do not meet the requirements specified in posture profiles, traffic is handled differently for zero trust connections and VPN connections:

  • For zero trust connections, if endpoints do not meet the requirements in the posture profile specified in a private access rule, the rule will not match the traffic.
    If no other rule matches the traffic, Secure Access applies the default private access rule, which will block the traffic. The default private access rule appears at the bottom of the list of rules on the Access Policy listing page.
  • For VPN connections, posture is evaluated at the time the device connects to the network. If endpoints do not meet the requirements specified in the VPN posture profile, the device cannot connect to the network.

For more information about posture profiles, see Manage Endpoint Security.


Display a Notification for Blocked Private Destinations < About Endpoint Requirements in Access Rules > Global Settings for Private Access Rules