I'm new to ClearPass and trying to setup meraki 802.1x wired where 2 companies will share the switches. There is not trust between these domains. I need to identify the user by domain and send it to the correct AD server. I dont have the kit to test the policy on a switch.
I'm looking for some guidance, can I add something like below in the service to identify the user below the default template Service Rules in the 802.1x Wired template?
Radius:IETF | User-Name | BEGINS_WITH | <your_domain_1>\
Then configure a service for each domain with a authentication source for each?
My consern is that the ClearPass will only be joined to the one domain, will the second authentication source be able to lookup the AD information?
Thank you. I will test this as soon as we have the kit and update the post. I did read on one post that addin gtehm to the same service causes timeouts before it tries the second auth source.
I read this post where it shows to add the user domain in the service.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.