Running 2930F 16.02 in PerPortTunneledNode to 8.1 (soon 8.2) controllers with .1x machine authentication in Clearpass 6.6.8.
The CPPM is to assign a VLAN to the computers. The problem is that we have to assign a different VLAN based on which switch (site) the computer is connected to.
But the only data from the swtiches that Clearpass picks up is Aruba-Port-ID containing its IP and MAC, and we have the same management-vlan for all the switches. I don't want to configure one role assigment rule per switch.
Is there a way to configure a RADIUS attribute (VSA) in the switches that Clearpass can make rules on? So all switches on site A sends attribute X that Clearpass can make rules on.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.