Original Message:
Sent: Sep 07, 2023 11:33 AM
From: bosborne
Subject: Clearpass 6.11 Azure AD API - Fetching device attributes
Thank you @mattAruba. It's been a while sonce we worked together on a TAC case.
------------------------------
Bruce Osborne ACCP ACMP
Liberty University
The views expressed here are my personal views and not those of my employer
Original Message:
Sent: Sep 07, 2023 11:29 AM
From: mattAruba
Subject: Clearpass 6.11 Azure AD API - Fetching device attributes
There are filters to restrict / watch specific attributes but not to restrict devices / endpoints.
Original Message:
Sent: Sep 07, 2023 10:15 AM
From: bosborne
Subject: Clearpass 6.11 Azure AD API - Fetching device attributes
When using the Intune extension, is there a filter to restrict the incoming devices?
Our intune has almost 70K devices (due to O365 for students) but we really only manage about 6K devices.
------------------------------
Bruce Osborne ACCP ACMP
Liberty University
The views expressed here are my personal views and not those of my employer
Original Message:
Sent: Sep 04, 2023 05:25 AM
From: Herman Robers
Subject: Clearpass 6.11 Azure AD API - Fetching device attributes
The ClearPass Azure AD Authorization Source only supports user attributes today. You can check/ask Aruba Innovation zone for a feature request.
You can get device attributes through Intune (with extension), in most of the cases.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
Original Message:
Sent: Aug 28, 2023 08:10 AM
From: julian.merkel
Subject: Clearpass 6.11 Azure AD API - Fetching device attributes
Hello,
i'm trying to fetch device authorization attributes with the Azure AD as source. I already configured the Azure Authentication Source and added it as additional authorization sources to my service.
I'm using the following filter (Certificate:Subject-CN equals the AAD_Device_ID). The query works in Microsoft Graph Explorer.
devices/?$select=id,isCompliant&$filter=deviceId%{Certificate:Subject-CN} /devices/{id}/memberOf?select=displayName
Are device queries not supported yet - and if not will it be supported in further versions?
Best Regards,
Julian