Since guests need https access to clearpass nothing is currently stopping them from removing the path from any url (keeping only https://domain.tld/) which gets them automatically redirected to the /tips admin logon prompt.
Is there any way to limit who may access that /tips path whether by blocking access altogether or simply ignoring authentication requests?
I found in "Monitoring - Eventviewer" that those CPPM sees the client ip address the user has when logging on so I figured I'd change the "Copy_of_[Policy Manager Admin Network Login Service]" to have its service include a "Connection - Client-IP-Address" with a simple "equals - ip address" (for testing), but this still allows any and all ip addresses to logon.
So simple ... :smileyembarrassed:
And to make sure nobody else misses the attached image from your post:
I had made a feature request for this a few months back
This is great I didn't realize it had been implemented!
Thanks Aruba and @koenv
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.