Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Computer OU

This thread has been viewed 3 times

  • 1.  Computer OU

    Posted Sep 11, 2017 03:30 AM

    Hi

    I have just started installing and configuring Clearpass.

    And i was woundring if I can profile a computer and have wich AD computer OU the computer belongs to, determine witch network it should be assingeed.

    So

    if my Computer is in OU winXP it will get VLAN10
    If my computer is on OU win7 it will get VLAN20

    I have tried searcing around, but coulden't find an answer.

    Any help wil be appreciated

    /Thomas



  • 2.  RE: Computer OU
    Best Answer

    Posted Sep 12, 2017 05:10 AM
    You can do this. Use UserDN contains in your enforcement or role mapping.

    E.g.
    Role mapping
    Authorization AD - UserDN - Contains - WinXP -> TIP role WinXP

    Enforcement Policy
    TIPS - Role - Equals - WinXP -> VLAN10 Enforcement Profile

    Enforcement Profile
    Assign VLAN 10




  • 3.  RE: Computer OU

    Posted Nov 10, 2017 05:52 PM

    Thansk for asking this one, I was just about to ask it myself.