07-24-2014 09:05 PM
I'm trying to setup the following for a client:
They would like staff to be able to connect (concurrently) 3 devices using 802.1x
They would like students to be able to connect (concurrently) 2 devices using 802.1x
Role derivation is based on AD attributes and works ok.
What i'm struggling with is how to query the number of active sessions for the user during the authentication process.
Am i better off having a concurrent session limit on the user role on the controller?
Anybody got any pointers?
07-25-2014 05:28 AM
Have you tried this in your policy?
Consulting Systems Engineer - ACCX, ACDX, ACMX
If you found my post helpful, please give kudos
07-27-2014 01:49 PM
I haven't tried that yet, wouldn't that just block you once they user has used more than 3 devices in total rather than 3 concurrent devices?
I have acounting enabled and can see the active sessions in ClearPass but just can't figure out the policy rules to query this. I have a feeling this may require SQL against insight?