We have set up a connection policy based on a specific use case where:
- During working hours, when an employee accesses an RDP session, there is no record of the audit trail.
- Outside of working hours, we want to record and monitor the RDP session.
The time of day is the trigger for these actions. We have also configured the entitlement on the SPP side to fulfill this situation.
However, we are encountering an issue where, when a user tries to connect to an RDP session outside of working hours, our Drawing Channel policy is denied, preventing the connection to the RDP session.
And when we try to test the out of working hours situation we have see that connection policy is not changed. Connection policies are using same source, target and Port. So we know that SPS using first matching connection policy.
What we want to understand here if we change the port for one of the connection policy will current issue resolve?