04-09-2015 04:46 PM - edited 04-09-2015 05:08 PM
I've created a custom TACACS+ dictionary that can be imported into ClearPass for administrative login into Infoblox Grid Manager. It is attached to this post, but make sure you remove the .txt portion of the filename (this forum apparently does not allow .xml file type uploads).
The "infoblox-admin-group" attribute should be passed back to Infoblox and should match a local admin group that is defined on the server. Enjoy!
Note: My initial upload had an error. I've since corrected. Guess I should have verified full functionality before posting :)
Solved! Go to Solution.
04-09-2015 05:25 PM - edited 04-09-2015 05:32 PM
To get this working from the Infoblox side:
- Add ClearPass as TACACS+ server into a TACACS+ server group (Administration > Authentication Server Groups > TACACS+ Services).
- Click Administration > Administrators > Authentication Policy and add your server group under "Authenticate users against these services in this order"
- Assign any admin group that you intend to have returned from ClearPass under "Map the remote admin group to the local group in this order".