Security

Reply
Frequent Contributor I

How to disable Guest Access to clearpass admin interface

I have a working setup with 7210 Controller and Clearpass. Everthing is working, but when you connect to the guest ssid and get redirected to the guest logon page, i can change the url from

https://clearpass.***.**/guest/guest_logon.php to https://clearpass.***.**/  i got the policy manager welcome page, where guests are not supposted to go there.

 

any suggestions? think it has to be something with source nat and Role/ACL

 

 

Guru Elite

Re: How to disable Guest Access to clearpass admin interface

Please use the Options under Administration> ClearPass Portal to fix this.  

 

******************
Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.
******************
Guru Elite

Re: How to disable Guest Access to clearpass admin interface

Also, under Server Configuration, you can configure application ACLs that can block access to certain modules by IP range.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor I

Re: How to disable Guest Access to clearpass admin interface

How was this issue solved?  We have the same issue?

 

Thanks

Occasional Contributor II

Re: How to disable Guest Access to clearpass admin interface

Hi,

One way to do it is as Tim said. Log into Policy Manager. Go to Administration -> Server Manager -> Server Configuration. Click on the server. Now you choose the Network tab. Here you will find a Restrict Access button under Application control where you can deny (or allow) access to different Clearpass modules from specified IP address,subnets,etc. For instance you could deny access to Policy Manager from your guest subnet.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: