I created a custom operator profile in ClearPass that grants access to ClearPass Onboard. The only permission applied is Delete Certificate.
I am able to successfully login using a test account. I noticed that all certificates in ClearPass are visible. I would like to only display certificates of type tls-client.
I was looking at the "Session Filter" option within the Operator Profile. I tried to do the following:
In the help section for this option it says "..or any other fields that are configured for search...". You can definitely search by certificate type.
Just curious if this is a valid use case for Session Filter? Or is there some other way to limit an operator's view to tls-client certificates only?
This is not possible natively. You'd need to use the REST API with a custom web app.
@timms, thank you for the info.
Would be a nice feature to have but I guess it is something that doesn't come up often.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.