08-31-2016 07:50 AM
We currently have a group of users authenticating their VIA access using EAP-PEAP. We want to move them to EAP-TLS, using x.509 certs they have already been issued. Can we configure the controller and/or ClearPass to simultaneously either/or auth mechanisms? Would we need a different interface (and matching URL) for each, or could it all be done using the same interface and URL?
08-31-2016 07:57 AM
08-31-2016 08:05 AM
Yes, you can. You just create a second set of profiles. One for each authentication method.
Thanks Tim - presumably you just have to be careful to issue the right profile to the right user at the right time?
08-31-2016 08:06 AM