Thanls for a quick reply again:)
What im trying to to do is to have a control a eg(Switch Button) to trigger either allowed endpoints or deny endpoints by switching in between Known and Unknown status
For example If im an Network Admin and ive got an contractor coming with his own device I want to be able to either approve his device by selecting known endpoint or decline and not approve by selecting unknown status.
Can I do all above by using Role Mapping and Enforcement Policy ?
Also Do you know how to trigger a policy rerfesh by force in Clearpass ?
Please see below picture, Very simple policy right :)
Everything works when Endpoints is in Known status, however when i change to unknown and reconect the client i can still connect even when ive changed the status to unknown
To retriger Status change and sync with the policy i have to forget the conection and reauthenticate
Are the any ways to make those chages on the fly so when i change the endpoint status it will immediately sync with the policy ?