Security

Reply
Occasional Contributor II

Using Clearpass to disable unused ports

Is there a way to use Clearpass to block unused ports in wired switches? I could find how, not in documentation neither by playing around in Policy Manager. 

I guess the more generic question can be: is there a way to do event driven enforcement, when the event is not OnConnect or WebAuth. There is a new Event driven capability in 6.6 but it is only for ingress evnets from a Firewall 

Guru Elite

Re: Using Clearpass to disable unused ports

Not really understanding your question. When fully configured, every device connected to a port would go through an authentication process.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: Using Clearpass to disable unused ports

It is a requirement from the customers. If a port was not used for over x amount of days, it should be disabled (shut down). I agree that if the port is protected with .1x or MAC auth. there is not much need to disable it, but this requirement from the customer still exists. 

Guru Elite

Re: Using Clearpass to disable unused ports

No, this is a function of an NMS.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: