Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Setting Called-Station-ID in Authentication Source

This thread has been viewed 14 times

  • 1.  Setting Called-Station-ID in Authentication Source

    Posted Jan 04, 2018 10:12 AM

    I am currently testing a wireless solution that involves our CPPM using an external Authentication Source.

     

    Everything is working currently, though the external Auth Source would like us to populate the Called-Station-ID field with an identifier to indicate which site this request has come from (we run a geographically diverse network with centralised wireless and breakout).

     

    I currently have different Services (one per site) that segregate Auth requests based on our AP naming schema. These then refer to different Auth Sources configured that have "Radius:IETF Called-Station-ID(30) = <site location>" set as an attribute. Yet the radius request is still only showing the AP MAC address.

     

    Does any one have any ideas on how this can be configured?



  • 2.  RE: Setting Called-Station-ID in Authentication Source

    EMPLOYEE
    Posted Jan 04, 2018 10:16 AM
    Called Station ID is set by the NAD and cannot be modified in transit.


  • 3.  RE: Setting Called-Station-ID in Authentication Source

    Posted Jan 04, 2018 10:22 AM

    Thanks for the prompt response, is that an IETF limitation? I only ask as the external auth organisation are adamant that this can be done with Cisco controllers.



  • 4.  RE: Setting Called-Station-ID in Authentication Source
    Best Answer

    EMPLOYEE
    Posted Jan 04, 2018 10:24 AM
    A Cisco controller is a NAD so that makes sense. ClearPass is an authentication server, not a NAD.

    tim


  • 5.  RE: Setting Called-Station-ID in Authentication Source

    Posted Jan 04, 2018 10:28 AM

    Many thanks.