Hi community,
Here's my situation: I have configured SSO onboarding with Microsoft Azure. During onboard, each user's endpoint has been populated with attributes (including department, job title, email, etc.) that can be used for authorization. As a result, I have 2 authorization sources in total: Azure AD and Endpoint Repository on CPPM.
I'm using Azure as the main authorization source, and everything works fine. But due to the nature of Azure that is based on cloud which can become vulnerable to Internet connectivity problems, I would like to configure CPPM to fallback to local authorization (endpoint repository) in that case.
I've tested this by configuring endpoint repository as the second authentication/authorization source in 802.1X service, then configure the firewall to silently drop packets to Azure server, which I think will trigger CPPM to fallback to local authorization. But the result is that I simply cannot connect to 802.1X SSID. There's even no log on CPPM.
Am I missing something? Or it's just because this feature is not currently supported on CPPM?
Thank you,