Security

In security stand point it is necessary?

I ask this because i see that we can add rules on the clearpass from where i can access the managment of clearpass, on the same clearpass.

 

we will use clearpass as radius server tacacs server and also as clearpass Guest.

 

The guest users will only have access only to the clearpass through the ports needed for that.  

i would like to keep it simple and just use one port but im not sure if the data port was done also for security purpuses or was for something else in mind?

 

Cheers

Carlos

Using a single interface is recommended.

Thanks Tim

Just as general knowledge, when i should use DATA port?

 

Cheers

Carlos

You shouldn’t 😊

Tim

Why is there then? it was used before for some reason? and now is not used anymore?

 sorry Tim but i really want to know now.... :)

 

Cheers

Carlos

To offer flexibility, but we don’t recommend using it as it provides very little security value and adds complexity.

When you mean security you mean very little extra security or you mean little security at all? i mean that it offer less security than just having one port?

i mean for examplewhen you have  802.1x and the client want to add  mac authentication

it offer little extra  security but its not worth it... it is the same????