Wireless Access

Reply
Occasional Contributor I
Posts: 7
Registered: ‎09-18-2014

Clearpass Single SSID for Windows and Apple Machines

Hello Everyone...

 

I would like to authenticate our corporate owned Windows/Apple Machines connecting to a single SSID.  The Windows machines are authenticating without issue against AD, but I would like to do the same with our Apple Laptops.  We are using dsconifgad commandlet to add the MacBooks to our AD and all Computer accounts are in a separate OU.    I would like to authenticate a user connecting from their apple machine to authenticate that their machine and user is in the domain based on attributes listed in the CPPM  Active Directory Service.  Can this be done? Or can I only authenticate Apple machines that are known corporate devices by a MAC whitelist?

 

Any help would be greatly appreciated.

 

-Frank

Guru Elite
Posts: 8,794
Registered: ‎09-08-2010

Re: Clearpass Single SSID for Windows and Apple Machines

Are the Macs authenticating at the login screen or are you doing network single sign on?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor I
Posts: 7
Registered: ‎09-18-2014

Re: Clearpass Single SSID for Windows and Apple Machines

login screen

Occasional Contributor I
Posts: 7
Registered: ‎09-18-2014

Re: Clearpass Single SSID for Windows and Apple Machines

After speaking with an Engineer at Aruba,  I'm authenticating our apple machines using PEAP-TLS with a machine cert from our Windows CA.   We are using JAMF JSS to push mobileconfigs to our corporate owned devices that includes the AD Cert/Network/Certificate Payload

Search Airheads
Showing results for 
Search instead for 
Did you mean: