An apparatus and method are directed to managing a policy-based access to a resource employing dynamic client integrity checking. The system may include a client device configured to log into a server. The server may provide a component to the client device. The component is configured to provide integrity information about the client device back to the server. The component may provide updates to the integrity information at a pre-determined schedule, thereby monitoring changes to the integrity of the client device during a connected session. Based, in part, on the received integrity information a policy for access is applied to the client device. In one embodiment, access may be increased to the resource. In another embodiment, the policy may deny access to the resource, if it is determined that the client device has an enabled network sniffer, an improperly configured antivirus application, or the like.