You are using the Identity Collector with Identity Awareness in large environment. Users report that they cannot access resources on Internet. You identify that the traffic is matching the cleanup rule instead of the proper rule with Access Roles using the IDC. How can you check if IDC is working?
To check if the Identity Collector (IDC) is working when users report that they cannot access resources on the Internet and the traffic is matching the cleanup rule instead of the proper rule with Access Roles using the IDC, use the command 'pdp connections idc'. This command helps verify the communication between the Security Gateway and the IDC to ensure that user information is being received correctly. If there are issues with this communication, the Security Gateway may not correctly identify and match user traffic, leading to it being handled by the cleanup rule.
A basic troubleshooting scenario is that the Security Gateway is not receiving user information. Follow the below steps: 1. Determine if the IDC is receiving events from the server. If not, examine the credentials, privileges, and network connection from the IDC to the server. 2. Run the following command to verify the communication between the Security Gateway: pdp connections idc 3. Verify that the query pool and filter are defined properly and associated with the Security Gateway If necessary to investigate further, run the debug. If the problem is on the Security Gateway side, debug the pdpd daemon, as discussed in this chapter.
pdp connections idc CCTE R81.20 Kortext p.402
Pg 177 CCTA 81.10
this was a real question on the updated PearsonVUE exam (R81.20), passed on May 9th. I personally came across this question in one form or another 4 times.