This article explains how to manage and configure the Trusted Network.
When you define a Trusted Network, the Timus Connect Application is going to disconnect from the gateway automatically once any Trusted Networks have been detected. Once you switch to other Networks, which are not trusted, the Timus Connect is going to reconnect to the gateway automatically.
- You need to enable the Trusted Network feature on the Agent Profiles as shown in the image below. Please note that this feature can be enabled on both Windows and macOS.
- You can go to the Timus Manager -> Settings -> Configuration -> Trusted Network.
- Once you click on Create New, you will be able to see the configuration page of the Trusted Network.
- You can select the Network Type either Wired or Wireless.
- Once you select the Network Type as Wired, you need to set the Source MAC address.
- When you select the Network Type as Wireless, you need to set the BSSID.
- To be able to find the MAC addresses, you can use the scripts on both Windows or macOS.
Windows (The script must be run over PowerShell as administrator):
$string = (Get-NetAdapter | Select-Object InterfaceDescription, MediaType, ifIndex, Status | Where-Object { $_.Status -eq "Up" }| Sort-Object -Property ifIndex | Select -First 1).MediaType
if ($string -like "*.11*") {
$bssidOutput = netsh wlan show interfaces | Select-String "BSSID"
if ($bssidOutput.Count -gt 0){
$address=[regex]::Match($bssidOutput, '([0-9a-fA-F]{2}:){5}[0-9a-fA-F]{2}').Value
Write-Host("wireless",$address)
}else{
Write-Host("Error","Interface details not found for Wifi adaptor.")
}
}else{
$gateways = (Get-WmiObject -Class Win32_NetworkAdapterConfiguration | Where-Object { $_.IPEnabled -eq $true } | Select-Object -ExpandProperty DefaultIPGateway)
$arpOutput = 0
if ($gateways.Count -eq 1) {
$arpOutput = arp -a | Select-String -Pattern "^\s*$gateways\s+([0-9A-Fa-f]{2}-){5}[0-9A-Fa-f]{2}"
} elseif ($gateways.Count -gt 1) {
$gateway=$gateways[0]
$arpOutput = arp -a | Select-String -Pattern "^\s*$gateway\s+([0-9A-Fa-f]{2}-){5}[0-9A-Fa-f]{2}"
}
else {
Write-Host("Error","Gateways not found")
}
if ($arpOutput -ne 0){
if ($arpOutput.Count -eq 1) {
$address=[regex]::Match($arpOutput[0].ToString().Trim(), '([0-9a-fA-F]{2}-){5}[0-9a-fA-F]{2}').Value
Write-Host("wired",$address)
} elseif($arpOutput.Count -gt 1) {
$address=[regex]::Match($arpOutput[1].ToString().Trim(), '([0-9a-fA-F]{2}-){5}[0-9a-fA-F]{2}').Value
Write-Host("wired",$address)
} else {
Write-Host("Error","ARP details not found for the gateway.")
}
}
}
macOS (the script must be run over Terminal):
- on macOS devices, sometimes, the script above may not work as expected and the result may be empty, this can be about EPP or AV. Therefore, you may consider using 2 different alternative scripts, which must be run over Terminal as well, below:
- Once you find the MAC address, which you need, you need to enter it to the related field on the Trusted Network. Then, hit the Save button.
0 comments
Please sign in to leave a comment.