2.8.11 Timing of network control list updates
The following table describes the events that result in the network control list being updated.
No. |
Timing of update |
Example |
Remarks |
---|---|---|---|
1 |
Device connection detected by network monitor |
The network monitor feature detects a connection from a device while monitoring the network. |
If a device connects to and then immediately disconnects from the network, a situation might arise in which the manager detects the connection but cannot acquire the IP address or MAC address of the device, preventing its addition to the network control list. |
2 |
Device connection detected by device search |
A network-connected device is discovered by a device search. |
-- |
3 |
Adding or deleting a managed device |
|
|
4 |
Network connection hardware (such as a NIC) is changed |
|
When changes are made to the configuration or settings of a network connection device (such as a NIC) in an environment where device information can be collected from managed devices, the changes are reflected in the network control list. |
5 |
Network access is manually permitted or denied |
|
The changes you make in these windows apply to the setting (allow/deny network access) for the device in the Connection to Network part of the network control list. |
6 |
Automatic network access control resulting from security assessment |
A device for which a Network Connection Control setting is enabled and a Violation Level (for controlling computer network connection) is assigned in the Edit Security Policy view for the security policy selected in the Security Policies - Security Policy List of the Security module is subjected to network access control. |
Depending on the security policy setting, the device is automatically permitted or denied network access. The automatic setting applies to the setting (allow/deny network access) for the device in the Connection to Network part of the network control list. |
7 |
New hardware registration, modification, or disposal |
|
|
8 |
Manual addition, modification, or deletion of network control list entries |
An administrator adds, changes, or deletes data manually in the Network Access Control - Network Filter Settings view of the Settings module. |
Data in the network control list that is associated with a device or hardware asset takes its value from the last change that was made to the device, hardware asset, or network control list, whether by an automatic or manual operation. Keep in mind that the value might be changed by an automatic process. |
Legend: --: Not applicable.
- Important note
-
If the management server is under a heavy load, it might take some time for changes to the network control list to take effect.