Security

last person joined: yesterday 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

TEAP with LDAP Authorization

This thread has been viewed 17 times
  • 1.  TEAP with LDAP Authorization

    Posted 17 days ago
    Hi there,

    I can't get any LDAP attributes when using TEAP.
    I can see in access tracker that Authentication:username is set the the correct user, and the queries use %{Authentication:username}, but the attributes all come blank and not role mapping based on LDAP attributes occur.
    Any idea how to fix?

    Thanks

    ------------------------------
    Ricardo Duarte
    ------------------------------


  • 2.  RE: TEAP with LDAP Authorization

    Posted 16 days ago
    I will answer myself.
    I modified my "Authentication" query to match either the built-in sAMAccountName but also userPrincipalName.
    Somehow, when adding userPrincipalName to the query it stops working with TEAP. Works fine with other EAP methods tho.

    But still I can't get "Groups" to show. I can get memberOf, but Groups is empty with TEAP.

    ------------------------------
    Ricardo Duarte
    ------------------------------