11-27-2014 12:39 PM
I'm trying to configure the clearpass to allow the students (in the schools) and the guests (in some buildings with public rooms).
I don't want that the guests can login in the schools (and the students in the public building).
My rule mapping
Role ID equals 1 : student
Role ID equals 2 : guest
I configured in clearpass the network devices of the different buildings with different radius shared secret and different location attribute.
Now I'm not able to block the user if isn't in the right buildings.
11-27-2014 12:43 PM
11-29-2014 02:34 PM
The easiest thing to do would be to duplicate your service and add the AP-group name(s) as a service rule and then put this service higher than the other one.
Then you can have custom enforcement actions for people connecting in those buildings.