Security

Reply
Frequent Contributor I
Posts: 83
Registered: ‎09-08-2015

Endpoint profiling - force re-profile

I've been playing around with wired 802.1x w/ MAC authentication fallback - doing authorisation based on device fingerprint in the endpoint database.

 

Is there any way to force the endpoint's profile information to be updated with every DHCP request that gets relayed to ClearPass? Looking at using this mechanism to stop MAC address spoofing...

Guru Elite
Posts: 8,467
Registered: ‎09-08-2010

Re: Endpoint profiling - force re-profile

That already happens. If the endpoint category changes, the Conflict flag will be changed to true.

Sent from Nine<>

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Frequent Contributor I
Posts: 83
Registered: ‎09-08-2015

Re: Endpoint profiling - force re-profile

Cool - are there any time constraints around this? Or caching?

 

Is there any special config required or just pointing DHCP helpers to ClearPass?

Guru Elite
Posts: 8,467
Registered: ‎09-08-2010

Re: Endpoint profiling - force re-profile

No, just the DHCP helper address or span port.

Sent from Nine<>

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: