01-09-2015 11:01 AM
Employees are currently connecting to the company wireless with their SAM account name.. we are in the midst of changing all authentication to UPN account name. Is there a way (in Clearpass) for authentication to use SAM and UPN? eventually it will just be UPN but for the migration, both will be needed.
01-09-2015 11:09 AM - edited 01-09-2015 11:10 AM
Yes. When that is enabled, all of the following will work:
The nice thing with UPNs is you can make policy decisions based on the authenticating user's domain. This is how eduroam works at its core. You can either do seperate services for each domain or just reference the "Authentication:Full-Username" attribute in a role map or enforcement policy.
01-09-2015 11:26 AM - edited 01-09-2015 11:26 AM
User authentication failed
| Alerts for this Request |
01-09-2015 11:49 AM
OK. You'll need to modify the authentication filter to be:
01-09-2015 12:14 PM
Hm. OK. Try this one: