Hello everyone,
I have read and tested MAC Caching in ClearPass in order to ClearPass learn the MAC address of clients and to avoid they authenticate every time they connect to a guest network if they were already connected to it. In adittion to create the appropriate service in ClearPass, it is also necessary to enable MAC authentication on the controller, but why? I mean, all the authentication and learning of the MAC address takes place in ClearPass, and regardless of MAC authentication is enabled on the controller, the client MAC address is sent to ClearPass when the user connects to the network within the "Radius:IETF:Calling-Station-Id" field, which is enough for ClearPass to check if the client was before already connected to the guest network or not.
Then, why to enable MAC authentication on the controller for this feature to work? Or what does this feature do in the controller? I have read on the controller guide but there is only explanation of how to enable it and not what does...
Regards,
Julián