Security

Reply
Occasional Contributor I

clearpass custom admin privilege

can someone tell me how to properly create a custom admin privilege on clearpass 6.2.6?

Guru Elite

Re: clearpass custom admin privilege

Please see page 214 of the CPPM 6.2 user manual. It explains how to create custom administrative privileges.

 

 

custom-admin-priv-manual.PNG

 

http://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/Command/Core_Download/Default.aspx?EntryId=11862


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Aruba

Re: clearpass custom admin privilege

or go to the admin priv page and click the help button.

 

Screen Shot 2014-05-15 at 11.02.29 AM.png

Thank You,
Troy

--Give Kudos: found something helpful, important, or cool? Click Kudos Star in a post.

--Problem Solved? Click "Accepted Solution" in a post.
Occasional Contributor I

Re: clearpass custom admin privilege

Hi Troy, i have tried that but what happens is i can sucessfully login using the new admin privilege but nothing shows on the page execpt the cppm hearder and footer. I am not sure what causes this kind of behavior. I have tried it several times and i get the same kind of behavior. We are using AD authentication to CPPM as primary and local user authentication as a secondary.

Guru Elite

Re: clearpass custom admin privilege

Try exporting one of the built-in roles and customizing it from there. Something might be wrong with your syntax.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor I

Re: clearpass custom admin privilege

i did that as well in case my syntax was wrong and the same happens. I did find it was easier to export one of the privileges currently in there, modify accordingly to con.id.ep, save it and then import it.

Occasional Contributor I

Re: clearpass custom admin privilege

I included a picture of my .xml for you to see what i am uploading. We are currently running 6.2.6.62196 using AD authentication. I modify the appropriate area's necessary. Create role, add rule to existing role mapping. Create profile and profile to existing enforcement policy. I am beginning to think it might be a bug in the code version i am on. In reality the only part i want is con.id.ep (Endpoint Repository) but i have tried it several different ways and it doesn't show anything on the page at all except CPPM header and footer. I can see that i successfully logged in access tracker.

Guru Elite

Re: clearpass custom admin privilege

Your XML looks correct. I would open a TAC case.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: clearpass custom admin privilege

Any update on this, I'm experiencing the same issue?


Thank you.

Michael Haring | AIS Consultant
Architecture and Implementation Solutions
Optiv Security Inc. | www.optiv.com
Occasional Contributor II

Re: clearpass custom admin privilege

I have the same issue! I opened up a support ticket (Case Number: 1741291) today. So far, they have worked on it for a few hours and we have gotten nowhere. Any luck on a solution for this issue? Below is a screen shot of the blank dashboard I am talking about. 

 

CPPM Blank Dashboard.jpg

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: