How to strengthen Network Security?Solved

@pepijn , A massive chunk of network vulnerabilities is simply due to devices running an outdated OS. If an operating system remains unpatched, even the most sophisticated firewall provides little protection, as it presents a direct vulnerability for potential exploits.

@elena , it’s definitely a headache we deal with constantly. How can we incorporate OS version compatibility into our network security workflow? I’d love a way to ensure a device is up to date before it’s granted access.

Hello  @pepijn , You can automate network security using a Dynamic Group paired with an Automated Remediation workflow. Here’s how that workflow functions:

• You create a Dynamic Group that automatically flags any device running an OS version below your approved minimum.
• Once a device falls into that group, it is marked non-compliant. You can then create an automation that will dissociate the VPN Configuration policy when the device becomes non-compliant. This effectively restricts network access until the issue is resolved.
• The automation can also include the Broadcast message action which shows an immediate pop-up notification on their screen explaining that their OS is outdated, and that they need to update it to regain access.

Once the update is complete, the device is automatically cleared from the group. You can create another dynamic group and automation to re-associate the VPN configuration policy and automatically restore access.

Regards,
Elle Reed,
Hexnode UEM.

@elle_reed , I really like that approach! It’s a great way to handle enforcement without our team having to manually chase people down. Thank you for your advice!