Security

Where do i find the devices a user has register. We limit our guets user to 3 devices, which i can see, but a user is having problems accessing the network and i want to see how many devices that user has registered and what they are.

Where would i find that in Clearpass?

If you been adding the Guest email / user to the endpoint db

You can do a search under Configuration >Identity > Endpoints DB

Select Attribute from the filter drop down and then pick username , this will allow you to search for all the mac addresses tied to a particular username/email

While i have a big list of MAC address, I dont have usernames nor a dropdown for it.

 

When i check the Guest policy, the it uses the Endpoints Repository

Are you doing mac caching ?

Yes, Sorry. 

 

MAC Caching,

You can add the following to the mac caching post_auth enforcement profile when the user performs the web authentication 

This way you will be able to see the device mac associated with guest username/email in the endpoint db 

 

Note: The only Attribute you need to add is the Endpoint : Username : % {Authentication:Full-Username}

For ease of troubleshooting I put that unique-device-count in a seperate condition and attach a role (Device Count Exceeded) to it.

 

This way in Access Tracker I can see right away if this is a cause for connectivity issues. Much easier than having to search the endpoint repository every time.