AAA, NAC, Guest Access & BYOD

 View Only
last person joined: one year ago 

Solutions for legacy and existing products and solutions, including Clearpass, CPPM, OnBoard, OnGuard, Guest, QuickConnect, AirGroup, and Introspect
Back to Library

What are the specific rules to be added in firewall to Onboard an Android device? 

Jul 11, 2014 11:20 AM

When we try to Onboard an Android device, the device needs to goto Google play to download the "ClearPass Quick Connect" app.

The Captive Portal profile configured on the controller which will host the Device provisioning page must be mapped to the firewall rules which allows access to google play.

Below are the  steps to add the Destinations which we would need to add in the Captive Portal profile.

  1. Create Firewall Destination named GOOGLE-PLAY that contains android.clients.google.com and .ggpht.com (type=name)
  2. Add GOOGLE-PLAY to the Captive Portal Profile Whitelist
  3. Make sure the firewall policy ending in CP_list_operations appears at the top of the BYOD-role.
  4. Ensure you allow TCP 80 and TCP 5228 out to the Internet in post OnBoard role to allow Droid to "verify connectivity" correctly.

Statistics
0 Favorited
0 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.