I just downloaded the evaluation version of clearpass to have a trial with.
I was looking at replacing our current windows radius server and cisco ACS server with Clearpass.
Is there a "how to guide" to explain how to set up a basic clear pass setup for authenicating Cisco end points (switches and routers) with radius and tacacs?
There are a number of documents on this page...http://support.arubanetworks.com/DOCUMENTATION/tabid/77/DMXModule/512/Default.aspx?EntryId=7961
Attaching some documents for your reference. there are lot more from support portal as colin mentioned above.
thanks for this! I will go through the documentation today and try and figure it out :)
I cannot speak to the RADIUS portion of the implementation, but I've just overcome all the hurdles
of implementing AAA/TACACS to Cisco Switches/Routers during a pilot to replace ACS.
We're using Active Directory as the Authentication/Authorization source with multiple AD Admin-Groups
and multiple Device Groups spread over about ten distinct business units covering ~160 sites in the U.S.
I would be happy to share some of my hard won knowledge.
I've been having a play with it in VMWARE workstation and GNS3 (to authenticate a router)
I just got it working with a local account, but we will require AD user authentication as well :)
Any information you can share will be useful :)
Did you not have a need for radius to authenticate non tacacs supported devices?
Well you will need to:
Setup your AD as an Authentication source. The documentation should tell you how.
I would be interested in this formation too.
Is it possible to get a copy?
Would you mind sharing that information please? I'm looking at the same solution TACACS+ with Cisco/Juniper switches.
@VTWATKINS -- Could I get a copy as well?
I am working on same task right now. but my boss ask me to configure clearpass with radius for network devices access.
just want to know which document can guide me to finish it.
thank you everyone in advance !
I would be interested in seeing some of your hard won knowledge on this as I'm struggling to get it even close to working.
@vjwatkins wrote:Alan, I cannot speak to the RADIUS portion of the implementation, but I've just overcome all the hurdlesof implementing AAA/TACACS to Cisco Switches/Routers during a pilot to replace ACS. We're using Active Directory as the Authentication/Authorization source with multiple AD Admin-Groupsand multiple Device Groups spread over about ten distinct business units covering ~160 sites in the U.S.and Canada. I would be happy to share some of my hard won knowledge. Vince
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.