Cisco ise endpoint purge elapsed days

 

Portal Settings. Click Enable. This is regarding a security breach happened in one of my ISE customer. The scenario i mentioned above is for a situation where end points are not purged as expected even after 30 days and to be honest that should not be done unless it is last option :) 4 days ago · I found the endpoint purge function and added a rule in section „Purge“ which basically says „If Identity Group Support and Elapsed Days greater than 30 days“. A reauthentication of the endpoint happens, this results in a new accounting start, and the 5 day timer resets. 02-08-2017 06:52 AM. All, Many customers use static MAC filter lists in my patch and would like to have the purge function apply to those endpoints as well. Beginner. Disable all network devices making use of ise such that there are no clients/devices accessing it; example switch/wlc/etc 3. Feb 6, 2020 · Hi, Well, ISE really do purge by default. Identity Services Engine (ISE) api. Mar 8, 2019 · There delete function under the Endpoint Identity Group list doesn't seem to work like it did in older versions. Set “Employees using this portal as guests inherit login options from:” to. Oct 27, 2017 · In previous versions of ISE I could go to Administration > Identity Management . I would suggest you set it to equal to 0 days so that when the default purge happens at 2am the endpoint is removed Apr 21, 2024 · The Sponsor gets an E-Mail. Sent from my iPhone Solved: Current behavior of endpoint purge in ISE 2. Jul 25, 2017 · I am using ISE 2. Endpoint authenticated in last hour but no accounting start or update received. Well, 'Unkown' in your case is an endpoint Identity group and the devices are not a member of this group. AND IP ip STARTSWITH 10. Sent from my iPhone Aug 28, 2018 · Endpoints that do not belong to any Endpoint Identity Group (EIG). Nov 18, 2015 · But in ISE 1. MarcoObid2364. Setup authorization rule above the standard redirect rule to say if guest flow and employees then redirect to employee hotspot portal. Our customer is using Cisco ISE 2. Then I select it and choose 'Remove' . Apr 11, 2016 · Create endpoint groups for employees and another for execs. 3 - Cisco Community. 02-17-2020 05:36 PM. Guest User is active for 1 Day. 06-09-2021 11:37 PM. nspasov. 04-05-2024 09:28 AM. 4. It does not affect the endpoint used by that guest, so you would rely on the Endpoint Purge policy to delete the endpoint (MAC Address). zip. 3 has a GUI filter that allows us to filter for endpoints that have "Empty"EIG. The purge job runs at 1:00 a. Level 1. Cisco calls this the RememberMe feature, and the portal-bypass relies on the existence of the endpoint MAC address in a specific Endpoint Identity Dec 28, 2016 · The operational data purge is configured for 365 days -> Operational Data Purging. € Feb 15, 2018 · Understanding ISE endpoints. Mar 21, 2017 · Hotspot simply registers the endpoint into the guest endpoint group and relies on endpoint purge policy (default is 30 days) to remove the endpoint. 11-06-201708:46 AM. But the problem is: If the guest account expires, ISE do not purge the EndpointID from database. Dear Community, There are lots of total endpoints amount on ISE dashboard. it wiped only these files May 2, 2024 · Cisco ISE, by default, deletes endpoints and registered devices that are older than 30 days. Set “Assign self-registered guests to guest type” to Guest. It can use elapsed days as a check for this Mar 2, 2018 · Level 1. As per reviews around 70% of endpoint are unknown. You can build your own purging rules. 3. You have the ability to purge based on endpoint id groups, &/or profiling/logical profiles. ISE reports Server Response Success on bottom right in green. The endpoints that guests use to access the network become the part of GuestEndpoints by default. It also displays the old and new authorization rules and the profile details for these endpoints. Meaning that any elapsed days, including 0, would be purged. This assumes you have reauthentication properly configured so the inactivity timer is accurate. The CoA Events report displays the status of these CoA events. Groups > Endpoint Identity Groups > and find the MAC address there. That guarantees any MAC address in the endpoint identity group on the purge rule gets dumped at 3:00. 2 without any Plus license). Cisco ISE Profiling Service; Configure Profiling Service in Cisco ISE Nodes Jun 28, 2017 · In previous versions of ISE I could go to Administration > Identity Management . Sent from my iPhone Mar 13, 2023 · InactiveDays is based on Last Activity and ElapsedDays is based on Create Time. I have a TAC case open for this issue - no reply yet from the engineer. 2 patch 2 - only base license installed (no Plus or Apex). All endpoints in the system have been inactive less than 9,999 days so they will be purged. The reason is that this massive amount of Endpoints is in an <undefined> Endpoint Group. € Mar 24, 2017 · This logfile will provide details on the operation such as start time, end time, how many endpoints were deleted, any errors encountered, etc. 12-28-2015 11:57 AM. ) (Guest subnet = 10. If I register 9am today, my endpoint will be marked to purge 9am next day; Recommendation is to set to use authorization based off endpoint group and not the web authentication and set account to expire Mar 29, 2017 · • Automatic Purge: A purge job runs approximately every 5 minutes to clear sessions that meet any of the following criterion: 1. ISE 2. Endpoint disconnected (Ex: failed authentication) in the last 15 minutes (grace time allotted in case of authentication retries) 2. You should be using the identity group purge process to dictate how often the guests have to authenticate to the portal. ISE has the policy to delete Guest endpoints and registered devices that are older than 30 days. Dec 22, 2022 · Purge_all_30days = purge any endpoint not in a static identity group after 30 days of inactivity. ise. 4 does not remove the endpoint, it just marks it as static false. Reply. Apr 5, 2024 · Level 1. x. Cisco calls this the RememberMe feature, and the portal-bypass relies on the existence of the endpoint MAC address in a specific Endpoint Identity Aug 17, 2020 · Endpoint Purge: Inactive Days vs Elapsed Days for Endpoints. Hello team, My total endpoints does not decrease and when i try to purge endpoints nothing happens. For my guest endpoints, I have it set to purge those endpoints every 3 days. Endpoint Purge: Inactive Days vs Elapsed Days for Endpoints The endpoints that guests use to access the network become the part of GuestEndpoints by default. So if i purge all GuestEndpoints every 3 days for example, a 1 Day Guest Account Device will remain 3 days active and could use the network ressources. Level 10. Chinese; EN US; French; Japanese; Korean; Portuguese; Log In May 15, 2019 · Endpoint purge works with base licenses. Hi everyone. 1 P6. It is currently performed with IP address reservation, but we will be switching to MAB via ISE. 03-14-2022 10:12 AM. 7. I tried to run this, but my test MAC, which I added to that support identity group, still stays available in database of ISE and is also still assigned to that support Identity Mar 10, 2019 · Using ISE 1. The Remove button is still there, and after clicking it, ISE tells you the Endpoint was successfully removed, but it never does. By default, it removes endpoints that are 30 days old from GuestEndpoints or RegisteredDevices. NB: If your ISE 3. With the default configuration. log. It all varies on when MAC is learned and give through portal. 2. The purge job runs at 1 AM every day based on the time zone configured in the Primary PAN. Go to solution. I tried to run this, but my test MAC, which I added to that support identity group, still stays available in database of ISE and is also still assigned to that support Identity Oct 27, 2023 · You could do this a couple of ways. Looking on the logs a Endpoint Purge had removed him from the system, this by default should be 30 days, I added the MAC Address back in to the filter and it started working again. This default purge job runs at 1 AM every day based on the time zone configured on the Sep 2, 2023 · ISE 3. x/16) Feb 11, 2019 · Purge day 1 3:00 a. 08-17-2016 12:57 PM. This would purge the entire group so the next day, everyone has to redirect to the portal to put their credentials in. Of couse this is a Base feature and the admin users should certainly be able to configure it. paul. Aug 5, 2012 · Reboot ise server/service. By Clicking on the link, the Sponsor can decide that this account is active for x days (Based on his ad Group) (Example: Sponsor from AD Group A: Can approve accounts from 1-30 days, Sponsor from AD Group B: Approve Accounts from 1-5 days) Thanks in advance! Solved! Go to Solution. 02-11-2020 02:25 AM. Endpoint purge can be for any endpoint group. Sep 29, 2017 · Purge day 1 3:00 a. 4 I have not seen that again. 05-29-2024 09:08 PM. Aug 28, 2017 · Buy or Renew. txt. 3:00 am day 3 endpoint purged. Disable profiling on ise. ISE Guest Account Management Introduction This document describes the frequently used actions that a sponsor or an ISE administrator can take on guest data present on ISE. Solved: The remove option on ISE 2. Feb 21, 2017 · From the Release Notes for Cisco Identity Services Engine, Release 2. Create a hotspot portal for employee devices and another for executives and choose the corresponding endpoint groups. There's no real ability to automatically note that endpoint 11:22:33:44:55:66 was purged due to not being seen on the network for 30 days. 3. This chapter describes how Cisco ISE profiles endpoints that connect to a Cisco ISE network, and how you can create profiling policies to manage these endpoints and grant them access to the resources in your network. The session timeout won't help you. png. Then click the run purge button. Purge_iPSK_180days = This purges any endpoint after 180 days of inactivity regardless if it was assigned to a static group or not. Application services would restart. My way you always get purged day 1. Build a rule that says "Endpoint Purge Inactive Days Less Than 9999" and don't specify any endpoint group. We try to perform purge but cannot reduce above unknown devices. Cisco Employee. Employee. Time in group 47 hours 59 min. Feb 26, 2018 · Once the endpoint is purged, the guest will require a new authentication using their guest credentials (assuming they are still valid). CSCuz83559 and CSCvd01079 are related known bugs. Uncheck everything except “Allow guests to create their own accounts”. ISE retains the endpoint information based on the latest information that it has seen/collected for that endpoint. Before I delete an endpoint, the 'Static Group Assignment' is True. 03-02-2018 07:52 AM. All endpoints used for guest authentication are removed after 30 days (from endpoint creation). If the old device does not connect on the network Feb 11, 2019 · Purge day 1 3:00 a. As it sits right now the InactiveDays only applies to Profiled endpoints and many of my customers are not using profiling at this time. Statically assign an endpoint if you do not want it to automatically change from the group. * files - e. In the window Work Center -> Identities -> Endpoints the Static Group Assignment and the Description the endpoints are shown correctly. 470—Cumulative Patch 1 : CSCvd01079 Endpoint Purge doesn't work with Base License on ISE 2. But ISE purge endpoints even was connect the day before. Self-Registration Page Settings. 1 has not yet patched with Patch 5, please do that or apply the hotpatch for CSCwd45843 Nov 6, 2017 · Options. Authorization Profile: The authorization policies configured for an endpoint in Cisco ISE are displayed here. Please make sure using the recommended ISE release and applying the latest patch. Administration -> Identity Management -> Settings -> Endpoint Purge Create 3 Endpoint Purge Policies shown below 1) EmployeeBYODEndpoints never Purge if Device Registration Status is Registered 2) GuestEndpointsPurge1Day purge when Elapsed Days is greater than 1 3) EmployeeEndpoints purge when Elapsed Days is greater than 90 Jan 19, 2017 · I think there is no native Cisco ISE way to check, if the guest user or portal user for a specific endpoint is expired and if so, purge this endpoint the next time purging is running, correct? - At the moment, we create a guest user with a lifetime of 30 days and save the mac address into the endpoint group Guest_Endpoints Aug 17, 2016 · 08-17-2016 11:33 AM. Feb 12, 2024 · Authentication Status: This field displays Started when an endpoint is authenticated through Cisco ISE, and Disconnected when it is not. Cisco ISE, by default, deletes endpoints and registered devices that are older than 30 days. When an end device has been disconnected from the switch port, I can still see in the ISE Jan 8, 2018 · In Cisco ISE 1. Aug 1, 2017 · You can schedule an endpoint purge job. Mar 14, 2023 · This is a fairly easy task to accomplish with the built in endpoint purge options. Sep 7, 2023 · ISE 3. For example, you could purge endpoints from an imaging L2 mab group every 5 days if you wish. As soon as a rule has been defined, the MAC address in the endpoint group will outlast the user account duration. Following this path " Administration > Identity Management > Settings > Endpoint Purge" i have changed the default purge Aug 7, 2018 · Options. See Administration->Identity Management->Settings->Endpoint purge. EN US. I am describing the potential of a mismatch between what the user expects (e. . Feb 27, 2019 · In ISE 2. Cisco TAC claim that this is to be expected when an endpoint is re-profiled but I am finding it hard to understand why the REGISTRATION attributes May 7, 2021 · Feeling a little disappointed Cisco - if someone was to accidentally remove a large number of BYOD registered endpoints, we currently have two choices: 1 - Restore the entire ISE system [days of work] 2 - Ask all the affected users to re-onboard [incredibly disruptive, requires business comms etc]. Security Group Tag: The Security Group Tags configured for an endpoint in Cisco ISE are displayed here. 10-09-2017 10:25 PM. Options. The counter is updated to 0 only if Dec 7, 2017 · The bug is resolved in ISE 2. But it has left a bad taste in my mouth. We use MAC address bypass on our guest network as a solution for non-802. The accounts are generated with a guest type of 365 days -> Guest Type. What you do have to be cautious of though is if you have any endpoint assigned to static identity groups. Guests- Elapsed days less than 9999 which guarantees the MAC addresses in that whitelist will be purged every night. Cisco ISE provides different APIs for GET and UPDATE operations for the API Gateway. 02-14-2018 04:00 PM. 04-21-202402:54 PM. m. 3 and are wondering if Cisco was able to incorporate customer requests. I am pasting the default conditions that applied for the purge conditions. May 2, 2024 · The endpoint purge schedule is enabled by default and Cisco ISE deletes endpoints that are older than 30 days. But this doesn't solve our requirement of having an automatic Purge facility. I could not find the 'password reset' feature though. Under Administration -> Identity management -> Settings -> Endpoint Purge you can create rules that remove old endpoints from the database completely (used mainly to clear up old guest users, etc. Deleted all endpoints usage in identies/identies group. 10. 2 - Cisco you will see a section for bug fixes in Patch #1 @ Resolved Issues in Cisco ISE Version 2. 298 with Patch 1 & 2. 5 Helpful. Nov 4, 2019 · 1. € May 22, 2024 · Authentication Status: This field displays Started when an endpoint is authenticated through Cisco ISE, and Disconnected when it is not. I use that on all my installs to guarantee purging. 3 I would reliably crash the PAN node if I tried purging more than 500 endpoints from the Context Visibility web page. Feb 17, 2020 · 1 Accepted Solution. The concern come from the need to delete all the Guest information from ISE every X days. Endpoints authenticated with MAB sporadically (after some days or weeks) loose their Static Group Assignment and the Description. about 95% are from my Guest network which makes sense but the inactive Endpoints are using Cisco ISE licenses still even though some have been inactive for 20+ days (after 30 there is a auto delete). And the endpoint does not go away - but instead, 'Static Group Assignment' is now Jan 19, 2020 · Then create a purge policy to purge that endpoint identity every evening with something like "elapsed days < 30". We recently upgraded to v2. Jun 1, 2016 · It seems there isn't a report to do so, other than running the registered endpoints report on multiple days and trying to get a diff. 2 Patch 1. But the end points are never purged. But If you remove the condition 'Unknown' all endpoints will be purged including the one which are part of the never purge rules. Jun 27, 2016 · Create a guest account for 1 day and purge the accounts at 1 day, remember purging happens at 3am or so on the day after its marked for purge. 3 Purge Endpoint functionality has been introduced. Hello, We're using this attibute for purge job, and after some issue with these purge job, we have seen that for some unknown reason and for devices always connected, the Inactivity day counter is not updated even if the device is connected and authenticated. Solved: We are running base license only and have been bit in the past by the Endpoint Purge feature, as it was only effective when running profiling. Maybe due to License Problem. If you're using the guest registration and guest portal function in ISE you can set time limits the account is valid for. The GUI allows this configuration but is it an allowed feature Feb 23, 2017 · I apologize, but patch release dates could shift and we do not share it in the public forums. 0 Helpful. purge. Version 2. And Endpoint Purge policies is not working properly. May 22, 2024 · Authentication Status: This field displays Started when an endpoint is authenticated through Cisco ISE, and Disconnected when it is not. Mar 19, 2019 · 1 Accepted Solution. Attached are the print of my total endpoints. Thanks, Aug 9, 2017 · From the admin guide I understand that when you set a purge time, or especially if you use the setting “Delete Logs Now”, it should delete the logs, independently from the storage space. Feb 8, 2017 · Endpoint Purge for Static Assigned Endpoints. Set “Account valid for” to 1 Days and Oct 27, 2014 · Cisco ISE Endpoint Profiling Policies. 1 person had Feb 21, 2017 · The symptom is the Endpoint Purge setings page tells the end user they are not licensed for configuring the feature. Nov 22, 2018 · 11-28-2018 04:10 AM. A simple rule such as the one I have in the example screenshot will remove any endpoint that has been inactive for 90 days including ones manually added or Sep 4, 2018 · To remove the profiling 'noise' from the deployment, they would like to be purged everyday. This endpoint purge schedule is enabled by default. Endpoint learned 3:01 am. I am seeing an increasing count of Endpoints and I am unable to create a Purge Policy to delete them. An interim accounting packet is sent by the switch/wlc telling ISE that the endpoint is still connected and active. The endpoint information, such as IP address, should update once the deice reconnects to the network. 2p2. Most of my confusion/frustration with ISE seems to revolve around my lack of understanding of how endpoints work. Then if the MAC don't change this Endpoint has access for 5 days, is this correct? When a vulnerability event is received for an endpoint, Cisco ISE triggers CoA for that endpoint. Cisco Identity Services Engine (ISE) guest services provide secure network access to guests such as visitors, contractors, consultants, and customers. Da ICS16. 1x devices to get on WiFi and bypass the captive portal. You can check your rules under Administration > Identity Management > Settings > Endpoint Purge Jun 22, 2017 · On my Cisco ISE I need to purge Endpoints immediately. But unfortunately I get an error: "HTTP Status 401 - One or more licenses are Out of Compliance for more than XX days, corresponding service configuration will be disabled". ), but I believe there is no functionality to just remove endpoint from a particular group automatically. Even with complex rules to ensure that only certain devices are purged and not Nov 15, 2022 · So i know about ISE Guest Remember-me function to look at the GuestEndpoint Identity Group. I wanted to implement a Self-Registered Wi-Fi Guest solution, where users would only see the Guest Portal once, login, and then never see again, until X number of days have elapsed. May 15, 2018 · Hi, I am using hotspot portal for guest access with just AUP accept, i have my guest endpoint identity group set to purge everyday at 1:00 AM (elapsed days greater than 1) my aim to get the guests just one day access and to be purge after a day while still using hotspot portal. 4, when the ISE profiles an endpoint and if the endpoint is disconnected after a while, will ISE retain the endpoint's MAC address in profiled database until unless it detects a change in the profiling information from same MAC address?. Don't get me wrong - I know that I can create Endpoint Identity Groups for my guest types and I use this for my Sponsored Guest flows (MAB/Remember Me). Therefore it won't work. Installed Patches 2,3,4,5,6,7. ) Edit or Change the Purge Policy is also not working. anyone experiencing the same or have seen this in the past. As the ise has been installed with a base license; not too sure if it may be either a bad restore (all Jul 21, 2021 · Regarding the option in the ISE Admin GUI to clear local logs: Administration > System > Logging > Log Settings "Delete Local Logs Now" When comparing the before and after (I compared the "show logging application" with WinMerge for side by side comparison) I noticed that it only cleanses the localStore/iseLocalStore. This prevents static endpoints placed in identity groups from being indefinitely stale. It can use elapsed days as a check for this Mar 14, 2022 · Options. Hi, Just a quick question. Dear experts. I have a Cisco ISE 2. Dec 28, 2015 · 1 Accepted Solution. Sep 11, 2018 · If I have an Endpoint Purge rule: GuestEndponts AND ENDPOINTPURGE: ElapsedDays GREATERTHAN 10 Days Does this mean, a GuestEndpoint has been in the database for greater than 10 days, it will get purged during the scheduled purge time? But if less than 10 days, it will remain? JAK - CORRECT QUESTION 2: The "Guest Account Purge Policy". 2 patch 2. If an endpoint hasn't been Mar 17, 2016 · The CIO enrolled his Mac on to the system, no issues, but then about 8 days later couldn't connect, kept asking which certificate to use. Learn more Oct 27, 2023 · You could do this a couple of ways. We know this is possible thanks to the "Schedule purge of expired Feb 7, 2020 · ISE will maintain a session as active for 5 days unless one of three things happens. The Endpoint Purge does work in patch 2. 356. Mar 20, 2019 · In your purge rule don't specify an endpoint identity group and set Inactive days >90 or whatever value you want. 03-19-201907:23 AM. You could also use the ISE endpoint purge policies to remove mac addresses from the identity group and ISE but this is a daily scheduled job. 2. The Guest account purge will only delete the Guest accounts from the internal ISE database. In fact, the EIG is Empty. 1. Dear Cisco TME/BU. As a result usually after 30 days guest user trying to access network hits RedirectToPortal authorization rule and is redirected for authentication. 5 days not seeing the portal after login) and what could happen in reality (user logs in on Wednesday and sees the portal the following day) - there is no way tha Sep 3, 2023 · Duo Security forums now LIVE! Get answers to all your Duo Security questions. Jun 13, 2021 · LAN team. I have a policy to delete endpoints greater than 90 days of inactivity. 1 guest access with a self-registration portal to let their guests create accounts on them self. The guest devices get registered into endpoint group Sep 7, 2023 · I think they don't understand the scenario I am painting. Patients- whatever you duration is for you pations, using elapsed days. I found the endpoint purge function and added a rule in section „Purge“ which basically says „If Identity Group Support and Elapsed Days greater than 30 days“. 08-07-2018 04:53 AM. 05-24-2024 08:59 AM. In the Cisco ISE GUI, click the Menu icon and choose Administration > System > Settings > API Settings > API. Apr 23, 2018 · The most reliable condition is "Elapsed Days less than 9999". Greg Gibbs. Apr 25, 2024 · Authentication Status: This field displays Started when an endpoint is authenticated through Cisco ISE, and Disconnected when it is not. You can either change the default purge rule, or create a new rule that matches on specific users/devices to only purge every 60 days. Purging policy as needed. Purging is right. Your guest endpoints are mapped to an identity group which is allowed to have Internet access. Dear all, can you please share, based on your experience, how should looks like an Endpoint Purge Policy? I would like to Purge all the Endpoints that didn't authenticate during the last 6 months, for example. Since ISE 2. Nov 8, 2019 · This means that an endpoint that is affected by this issue, is no longer able to authenticate on the network and the ONLY way we can resolve it is to delete the endpoint from ISE and re-onboard it. Cannot do Endpoint purge on ISE 3. In my Cisco WLC interim RADIUS Accounting Settings Sep 11, 2017 · Setup your purge policy for the whitelists as follows: Tenants and Employes- don't setup a purge policy. 253 (patch 6) and created an End Point Purge condition "Data_MAB_group AND ENDPOINTPURGE ElapsedDays GREATERTHAN 1" to purge all end points in the Parent Group called Data_MAB_group. Then you manually select them and delete them. Endpoint purge is every 5 days. Apr 13, 2016 · Create endpoint groups for employees and another for execs. — Threat Events Feb 11, 2020 · ISE Endpoint Purge Policy. Please provide the TAC case number so we may follow up. Nov 29, 2019 · In ISE there are ways to setup device purging. My question is, an endpoint that is created at 1:01 AM will not be Oct 10, 2017 · Endpoint purge policy for 'blank' Identity Group. Mar 10, 2019 · Maybe I haven't looked long enough or deep enough through the documents and guides, but I am wondering if there is a best practice for purging endpoints in general. When editing the endpoint there is no Static Group In Cisco ISE have Alot of inactive Endpoints (Context Visibility>Endpoint>Authentication). See the section "Endpoints Purge Settings" in Cisco ISE Admin Guide: Maintain and Monitor for more information. I think this would be extremely valuable of a report if not. Endpoint purge deletes over five thousand endpoints every 3 minutes. Background ISE has the capability to purge Endpoint Identity Groups. You could get purged day 1 through 3. In the ISE API Gateway Nodes List area, check the check boxes next to the nodes on which you want to enable the API Gateway. (midnight) every day based on the time zone configured in the primary PAN. Purge day 2 3:00 am. May 24, 2024 · ISE endpoint purge question. Registration is performed on a house-developed Web portal that adds ISE Guest Account Management Introduction This document describes the frequently used actions that a sponsor or an ISE administrator can take on guest data present on ISE. Login Page Settings. If I configure Self registered Guest Access: Guest Register Himself -> Guest Logs in -> Endpoint gets written in the Endpoint Database. This default purge job runs at 1 AM every day based on the time zone configured on the Aug 26, 2021 · As long as no purge rule exists, the MAC address will be purged from the Endpoint Group when the user account is either deleted or expired. g. 0. 4. By default, Guest Endpoints are purged every 30 days. Endpoint purge rules have been configured with an IP address as a condition, but have no impact: Unknown AND (ENDPOINTPURGE ElapsedDays LESSTHAN 9999. 3:01 am day to endpoint goes to 1 day. pi zl gn mx qr us fu zh jf iq