Security

Reply
Occasional Contributor I
Posts: 7
Registered: ‎08-12-2015

CPPM-MAC Authentication configuration with time source

Hi Guys, 

I have created a mac address authentiction service that will match against a static host list defined on my clearpass. However i am thinking of implementing a time source whereby the user will be barred after 3 days. How can that be done ? Would be good to give specific details as i am still pretty new with clearpass.

Guru Elite
Posts: 7,852
Registered: ‎09-08-2010

Re: CPPM-MAC Authentication configuration with time source

Static host lists would not be the route to take here. I would go with device registration (MACTrac) in ClearPass Guest. 

 

This is a fairly advanced concept if you don't have much CP experience. You may want to work with your ClearPass partner. Here's a link if you want to try it yourself.  

 

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/How-To-Advanced-MACTrac-designs-in-ClearPass-November-MHC/td-p/217291

 


Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Occasional Contributor I
Posts: 7
Registered: ‎08-12-2015

Re: CPPM-MAC Authentication configuration with time source

Hi Cappalli, So for static host list, i am unable to set a client expiry date/time ? Would you recommend using end point instead since i can set an expiry date there.

Guru Elite
Posts: 7,852
Registered: ‎09-08-2010

Re: CPPM-MAC Authentication configuration with time source

I recommend using device registration in CPG...


Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Frequent Contributor II
Posts: 114
Registered: ‎07-13-2015

Re: CPPM-MAC Authentication configuration with time source

Search Airheads
Showing results for 
Search instead for 
Did you mean: