Security

Ciao,

I can't see the client IP address in ClearPass accounting information for a 802.1x authentication event, in the access tracker.

I'm using AOS-SW-Access 2530 with "ClearPass_Solution-Guide_Wired-Policy-Enforcement_v2018-01.pdf" configuration guide.

Could the not supported command "ip client-tracker trusted" be related with this issue?

 

Thanks

if you have ClearPass setup for RADIUS accounting as well as authentication it should include client IP as well.


#AirheadsMobile

I resolved configuring DHCP snooping on the switch.

Now the switch learn the client IP address in the CLI and it sends accounting Framed-IP address to the ClearPass as well:

 

SW(config)# sh port-access clients

 

Port Access Client Status

 

  Port  Client Name   MAC Address   IP Address      User Role         Type  VLAN                                                   

  ----- ------------- ------------- --------------- ----------------- ----- -------------------------------------------------------

  11    6c3be5f73105  6c3be5-f73105 10.90.26.204    GUEST             MAC   148      

 

if you have ClearPass setup for RADIUS accounting as well as authentication it should include client IP as well.


#AirheadsMobile