Security

last person joined: 20 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Regex syntax in CPPM 6.4

This thread has been viewed 6 times

  • 1.  Regex syntax in CPPM 6.4

    Posted Jul 16, 2015 03:50 AM

    Hi,

     

    I'm trying to modify our eduroam configuration to match on two organisation names.

     

    Currently I match (e.g.) Full-Username CONTAINS uni-1.edu.au

     

    I need to match now on uni-1.edu.au or uni-2.edu.au

     

    I've tried things like

    MATCHES_REGEX uni-1.edu.au|uni-2.edu.au

     

    but it totally fails to match anything.

     

    Another complication is I use CONTAINS rather than ENDS_WITH as some smart devices append a space on auto-complete of the username.

     

    Can someone provide details of how to do a match for two domains, allowing for trailing spaces?

     

    It is a real shame the service rule is so inflexible, and needs to be a match ANY or ALL, and not something like this AND this and either of this OR this.

     

    Regards,



  • 2.  RE: Regex syntax in CPPM 6.4
    Best Answer

    EMPLOYEE
    Posted Jul 16, 2015 07:18 AM
    The regex for multiple domains would be:
    \b.*(uni-1\.edu\.au|uni-2\.edu\.au)\b

    In terms of the space issue, I would not recommend allowing those devices to connect. It will generate help desk calls when they are at another eduroam university and can't connect.


  • 3.  RE: Regex syntax in CPPM 6.4

    Posted Jul 16, 2015 07:32 AM

    Hi Tim. That RegEx seems to work. To invalidate the trailing space I'd need a character at the end like a $ to say it must be the end of the line?

     

    I'm about to get our service desk to start contacting users with connection errors with obvious typo in their username, like "su" not "au" due to fat fingers, I'll add the trailing space fix to their work.

     

    Thanks.



  • 4.  RE: Regex syntax in CPPM 6.4

    EMPLOYEE
    Posted Jul 16, 2015 10:25 AM

    Yes. You definitely don't want to allow the trailing space to pass auth because they will not be able to authenticate when they leave your campus.



  • 5.  RE: Regex syntax in CPPM 6.4

    Posted Dec 02, 2015 12:08 AM

     How do you make this case-insensitive? 

    And by the way, what is Clearpass's re syntax? Another massive documentation omission last time I had an extensive look.



  • 6.  RE: Regex syntax in CPPM 6.4

    EMPLOYEE
    Posted Dec 02, 2015 12:12 AM
    Add a \i to the end

    Sent from Nine


  • 7.  RE: Regex syntax in CPPM 6.4

    Posted Dec 02, 2015 12:14 AM

    already tried it.. doesn't match anything now



  • 8.  RE: Regex syntax in CPPM 6.4

    Posted Dec 02, 2015 12:21 AM

    My functioning regex looks like

     

    (?i)\b.*(target-1|target-2)\b$

     

    if target contains a "." period, use \.

     



  • 9.  RE: Regex syntax in CPPM 6.4

    Posted Dec 02, 2015 12:26 AM

    thanks will try it..

     

    looks very much like perl re but wish it was stated somewhere.



  • 10.  RE: Regex syntax in CPPM 6.4

    Posted Jul 11, 2018 07:11 AM

    For me in ClearPass adding \i at the end did not work. Prepending the regex with "(?i)" dit the trick for me. So matching for domain @testdomain.com and ignoring the syntax resulted in (?i).*@testdomain\.com$



  • 11.  RE: Regex syntax in CPPM 6.4

    Posted Aug 06, 2018 01:08 PM

    See here for a handy-dandy regex validation tool.

     

    https://regex101.com/