I see from some notes and slides that one of the things that Clearpass could do was detect if there was a conflict in a devices dhcp fingerprint compared to the first time it connected.
I believe it was done with this
Authorization:[Endpoints Repository]:Category EQUALS Conflict
However, when I try to put it in (6.3), that is not available as an option.
So is this still possible in 6.3 and whats the correct way to do it?