Do you see [Machine Authenticated] as role after the computer authentication?
You should not do anything to keep the [Machine Authenticated] role cached. In the subsequent user authentication you should see both [User Authenticated] and [Machine Authenticated] under the roles in Access Tracker.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Apr 21, 2022 08:39 AM
From: Unai Abrisqueta
Subject: Wired 802.1x service not working as expected
Hey Team!
I am trying to deploy a solution of wired 802.1x with my aruba clearpass 6.9.7. I am not being able to cache the role assigned by the first machine authentication, when I am authenticating as user. I really need to keep the role linked with the endpoint at least until the user authentication.
I have checked the checkbox "Use cached Roles and Posture attributes from previous sessions" , but it keeps not saving the role. I tried to extend the option behind cluster wide parameter "Policy result cache timeout" to 15 minutes without result.
Does I have to do anything special in the role mapping side? How could I keep saved the role?
Thanks!
------------------------------
Unai Abrisqueta
------------------------------