I am trying to leverage the ClearPass APIs to update endpoints on a separate ClearPass cluster. I am able to issue the API request using API explorer or even from my system's command line using curl.
I setup the configuration in the following way, please let me know if I'm missing something.
- Create an API client under ClearPass Guest -> Administration -> API Services -> API Clients
- Setup grant type to client credentials
- Create Endpoint Context Server (Generic HTTP)
- Use Client Id and Secret from previous step
- OAuth2 Resource URL /api/oauth
- Create Endpoint Context Server Action
- Reference Server from step 2
- Configure HTTP Method, URL, Headers and Content based on infromation from API Explorer
- Create an Enforcement Profile (HTTP)
- Target Server from step 2
- Action from step 3
- Create Enforcement Policy Rule applying enforcement profile created in step 4
Looking in access tracker the enforcement profile I created is being triggered, however I never see the API request being made on the other system. I can validate the server in step 2 sucessfully, and I see a log message in the application log that a access token was created when I validate. Also took a packet capture and I do not see any tcp/443 traffic between the two systems.
Any help would be appreciated.