Security

Reply
Contributor II
Posts: 43
Registered: ‎07-01-2013

Infoblox TACACS+ dictionary for ClearPass

[ Edited ]

Hello all,

 

I've created a custom TACACS+ dictionary that can be imported into ClearPass for administrative login into Infoblox Grid Manager. It is attached to this post, but make sure you remove the .txt portion of the filename (this forum apparently does not allow .xml file type uploads).

 

The "infoblox-admin-group" attribute should be passed back to Infoblox and should match a local admin group that is defined on the server. Enjoy!

 

Note: My initial upload had an error. I've since corrected. Guess I should have verified full functionality before posting :)

Tim Haynie, ACMX #508, ACDX #384, ACCP, CWSP, CCNP R/S, CCNP Wireless, CCNA Security, CCDA, Aruba Partner Ambassador
Contributor II
Posts: 43
Registered: ‎07-01-2013

Re: Infoblox TACACS+ dictionary for ClearPass

[ Edited ]

To get this working from the Infoblox side:

  1. Add ClearPass as TACACS+ server into a TACACS+ server group (Administration > Authentication Server Groups > TACACS+ Services).
  2. Click Administration > Administrators > Authentication Policy and add your server group under "Authenticate users against these services in this order"
  3. Assign any admin group that you intend to have returned from ClearPass under "Map the remote admin group to the local group in this order".
Tim Haynie, ACMX #508, ACDX #384, ACCP, CWSP, CCNP R/S, CCNP Wireless, CCNA Security, CCDA, Aruba Partner Ambassador
Search Airheads
Showing results for 
Search instead for 
Did you mean: