Security

last person joined: 21 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass blacklisted users

This thread has been viewed 10 times

  • 1.  Clearpass blacklisted users

    Posted Mar 26, 2017 09:18 AM

    Hi,

    I applying an enforcement profiles that blacklist any user when daily bandwidth limit is exceeded.

    The Clearpass is configure to purge all blacklisted users at midnight

    Everything working fine

     

    How do I exclude the implementation of this enforcement profile on a specific users and keep it applied on all other users?

     

    Best Regards



  • 2.  RE: Clearpass blacklisted users

    Posted Mar 26, 2017 09:31 AM
    What type of authentication are you using ?

    Get Outlook for iOS


  • 3.  RE: Clearpass blacklisted users

    Posted Mar 26, 2017 09:34 AM

    AD  &  MAC

     

    Best Regards



  • 4.  RE: Clearpass blacklisted users

    Posted Mar 26, 2017 12:57 PM
    If is based on a certain type of user can you can leverage AD memberships to determine who or not will be blacklisted


    Get Outlook for iOS


  • 5.  RE: Clearpass blacklisted users

    Posted Mar 26, 2017 04:47 PM

    Dear Victor

    You mean that we can created an enforcement Policies for a specific AD-Group members ?

    Best Regards



  • 6.  RE: Clearpass blacklisted users
    Best Answer

    Posted Mar 27, 2017 12:36 PM
    Yes

    Get Outlook for iOS


  • 7.  RE: Clearpass blacklisted users

    Posted Mar 29, 2017 05:22 AM

    Dear Victor

    thanyou ...its working

     

    but how can manually synchronize Active Directory users with the Clear-Path

     

    Best Regards



  • 8.  RE: Clearpass blacklisted users

    EMPLOYEE
    Posted Mar 29, 2017 09:38 AM

    What are you trying to synchronize? Please clarify.



  • 9.  RE: Clearpass blacklisted users

    Posted Mar 30, 2017 04:09 AM
      |   view attached

    Dears

     

    I create AD Group ( wireless_No_blacklist )  and i create an enforcement condition to give allow access to ( Wireless_No_blacklist ) members

    check out the attached Pic.

     

    the problem is: when i assign a new AD user to (Wireless_No_blacklist ) it takes many hours to appear on clears Pass so is there any way to sync the new users manually

     

    Best Regards



  • 10.  RE: Clearpass blacklisted users
    Best Answer

    Posted Mar 30, 2017 06:10 AM
    You can either do a clear cache manually under sources > your ad
    Or decrease the cache value

    Noté: be careful decreasing the value because that means that clearpass will contact the AD more often

    Get Outlook for iOS


  • 11.  RE: Clearpass blacklisted users

    Posted Mar 30, 2017 06:20 AM

    Dear Victor

     

    I appreciate your great help

     

    thank you