Security

last person joined: 3 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

ClearPass AOS-CX switch DUR with named VLAN

  • 1.  ClearPass AOS-CX switch DUR with named VLAN

    Posted 23 days ago
    I am looking to set up a DUR enforcement profile in ClearPass to assign a role to an AP and set the native VLAN and trunk allowed VLANs.  When I set this up using the VLAN IDs, it works correctly.  If I try to assign the VLANs using the named VLANs, the role does not get downloaded to the CX switch.  

    Does anyone have the correct syntax to configure the named VLANs for a trunk port to a CX switch?

    Here is what we are currently using:

    Here is what we tried for named VLANs that didn't work



    Thanks


    ------------------------------
    Cheryl Hanna
    ------------------------------


  • 2.  RE: ClearPass AOS-CX switch DUR with named VLAN

    Posted 22 days ago
    Have you tried again after putting a space between the last two VLAN names?


    ------------------------------
    Dustin Burns
    ------------------------------



  • 3.  RE: ClearPass AOS-CX switch DUR with named VLAN

    Posted 22 days ago

    ------------------------------
    Dustin Burns
    Senior Mobility and Access Engineer
    Worldcom Exchange, Inc.
    ------------------------------



  • 4.  RE: ClearPass AOS-CX switch DUR with named VLAN

    Posted 22 days ago
    I have tried a few different varieties of this enforcement.  I did find a log on the switch that stated the VLAN name can not be more than 32 characters.  So if I excluded a couple of the VLAN names in the trunk allowed statement, I did see the role get applied to the port however it still shows that it failed to assign the VLAN to the port.  

    I have tried with and without spaces between the names and even tried entering the allowed VLAN names one per line and all show the same results.  I have opened a TAC case for this one.

    Thanks

    ------------------------------
    Cheryl Hanna
    ------------------------------



  • 5.  RE: ClearPass AOS-CX switch DUR with named VLAN

    Posted 10 days ago
    Edit: nevermind, it works, I forgot the "name" in the VLAN statement:
    vlan access name IoT

    Thanks,

    Kris

    ------------------------------
    Kris Vervisch
    ------------------------------