Device serial numbers
Cloudflare Zero Trust allows you to build Zero Trust rules based on device serial numbers. You can create these rules so that access to applications is granted only to users connecting from company devices.
Prerequisites
-
Cloudflare WARP client is deployed on the device. For a list of supported modes and operating systems, refer to WARP Client Checks.
Create a list of serial numbers
To create rules based on device serial numbers, you first need to create a Gateway List of numbers.
-
In Zero Trust ↗, go to My Team > Lists.
-
Select Create manual list or Upload CSV. For larger teams, we recommend uploading a CSV or using Cloudflare’s API endpoint.
-
Give your list a descriptive name, as this name will appear when configuring your policies.
-
Set List Type to Serial numbers.
-
Enter the serial numbers of the devices your team manages, or upload your CSV file.
-
Select Save.
You can now create an Access policy or a Gateway network policy that checks if the device presents a serial number on your list. In Access, the serial number check will appear as a Device Posture - Serial Number List selector. In Gateway, your serial number list will appear in the Value dropdown when you choose the Passed Device Posture Check selector.
Determine the serial number
macOS
-
Open a terminal window.
-
Use the
system_profiler
command to check for the value ofSPHardwareDataType
and retrieve the serial number.
Windows
-
Open a PowerShell window.
-
Use the
Get-CimInstance
command to get the SerialNumber property of theWin32_BIOS
class.
Linux
-
Open a Terminal Window
-
Use the
dmidecode
command to get the version propertysystem-serial-number
.
iOS, Android and ChromeOS
Serial number checks are not supported on mobile devices. You can identify mobile devices by a unique client ID instead of by serial number.