04-21-2016 01:45 PM - edited 04-21-2016 01:46 PM
I'm looking to create a service/policy that uses EAP-TLS to authenticate user and machine certificates but for authorization ensures that the account is still in good standing in Active Directory. Currently we're pulling the Subject CN and I have the policy authenticating valid certificates, but it's still authorizing the user regardless of the status of their account. I've done this with other Radius products, just trying to figure out how to do it the CPPM way ;)
04-21-2016 02:07 PM
Sent from Outlook for iPhone
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
04-21-2016 02:08 PM - edited 04-21-2016 02:11 PM
In your EAP-TLS authentication method, you would make sure that "authorization required" is enabled. My apologies if you have already tried that.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
04-25-2016 10:23 AM
I think your answer is on the right track. Can you send me some extra details on how to configure this?
Sorry for the lengthy gap, it's been a busy week of projects lately.