How To Toggle Enforcement on Layer 2 or Layer 3 networks (RBE/PBR)?

This article applies to a range of supported network management devices, the current MetaAccess NAC Enforcer and the MetaAccess Web UI.

When Enforcement is enabled, all devices under the configured Enforcement Device will be placed under the associated Policy.

To toggle enforcement on your network, follow the network-appropriate steps below.

Layer 2 / Radius Based Enforcement / RBE

  1. Naviaget to RADIUS>Configuration. Next to Status, click Enable. Then, in the pop-up, click OK.

To confirm that enforcement is enabled, look at the Status icon, which will now appear green (or red when enforcement has is disabled).

Layer 3 / Policy Based Routing / PBR

  1. Go to your MetaAccess NAC Dashboard>Configuration>Enforcement Setup>Routers/Switches.
  2. Then click Enable alongside your chosen L3 routing device connection, or, in the top right-hand corner of the screen, click Enable All.
  1. The router should now show a Green checkmark, indicating its enabled status.

Disabling Enforcement

Disabling enforcement will place your network in a fail-open state, opening your network to possible attack in the event of a failure.

Please follow the network-specific steps below to disable enforcement.

Disabling Layer 2 / Radius Based Enforcement / RBE

  1. Go to your MetaAccess NAC Dashboard>Configuration>Radius>Configuration.
  2. Then, alongside the Status icon, click Disable, as shown below, then click OK in the pop-up box to confirm.
  1. The enforcement Status icon will now appear in red, indicating that enforcement is disabled.

Disabling Layer 3 / Policy Based Routing / PBR

  1. Go to your MetaAccess NAC Dashboard>Configuration>Enforcement Setup>Routers/Switches.
  2. Then click Disable alongside your chosen L3 routing device connection, or, in the top right-hand corner of the screen, click Disable All.
  1. In the pop-up, add an optional note for change management, then click Submit.
  1. The router should now display a Red checkmark, indicating its disabled status.

If you have followed the instructions above but have been unable to Toggle Enforcement On Layer 2 / Layer 3 (RBE/PBR) Networks, please open a Support Case with the OPSWAT team via phone, online chat or form, or feel free to ask the community on our OPSWAT Expert Forum.
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
How to use MetaAccess NAC enforcement without impacting network equipment?
On This Page
How To Toggle Enforcement on Layer 2 or Layer 3 networks (RBE/PBR)?Layer 2 / Radius Based Enforcement / RBELayer 3 / Policy Based Routing / PBRDisabling EnforcementDisabling Layer 2 / Radius Based Enforcement / RBEDisabling Layer 3 / Policy Based Routing / PBR