Device Posture security

What is Device Posture Monitoring?

Device Posture Monitoring is a security feature that allows Organization Admins to check and evaluate Member devices according to predefined security rules and get notified about non-compliant devices.

To enable the feature, go to Control Panel → Device security → Device Posture Monitoring and click Enable.

What are Profiles and how to create one?

Profiles allow Organization Admins to create specific rule-based profiles and assign them to Members of their choice.

To configure the default Profile, go to Control Panel → Device security → Profiles. You can select which operating systems (OS) are allowed and choose whether you want to trust
each device. You’ll be alerted about newly connected devices until you trust them.

Then you can set specific rules, of which there are four:

1. File exists checks if specific files exist on the device;
2. Operating system version checks if the device runs on an equal to or higher than the specified OS version;
3. Supported NordLayer app version checks if the supported NordLayer app version is installed on the device;
4. Not jailbroken checks if the device is not jailbroken.

Once you’re done setting the rules, click Apply rule changes to apply the new rules.

Where to find monitoring history?

You can find the monitoring history in Control Panel → Device security → History. If you want to view and manage only non-compliant devices, go to Control Panel → Device security → Non-compliant devices.

Note: If you have Organization Admin must trust the device ticked, you’ll be able to trust one or all devices at once. This will remove the Untrusted device status for the trusted devices during the next device posture check.

If you want to receive email notifications when non-compliant devices connect to your network, tick Notify via email next to each rule of your choice.

Note: In case you have any questions or are experiencing any issues, please feel free to contact our 24/7 customer support team.