In ClearPass Onboard 3.9 it was possible to setup role based credential expiry (certificate validity) off of AD attributes. However, the same settings/return attributes don't seem to work with CPPM 6.x (6.1 in this case).
Previously it was possible to set a reply Radius attribute (Session-Timeout) with either a value of seconds or an explicit date (for example <?= strtotime(‘2013-12-31 23:59:59’) – time() for December 31, 2013) and have the certificate expiration date be refelcted by this.
I may have overlooked it, but is there a similiar setup/process in 6.x for this functionality?