Hi Airheads,
we are currently trying to connect our Clearpass Installation to a 3rd Party Firewall which supports Identity Awareness via REST calls.
Basically we configured an Endpoint Context Server with 2 Actions (Login / Logout).
We have to pass Username, Groups and IP of the Authenticated User to the Interface.
The Login Body would as configured now:
ip=%{ip}&session_timeout=60&idle_timeout=30&username=%{Authentication:Full-Username}&groups=test
For the Endpoint IP i could not find any working Variable. As in the already existing Templates we tried both %{ip} and %{Radius:IETF:Framed-IP-Address} which were not working. The Username is properly filled through the %{Authentication:Full-Username} Variable.
We checked this by capturing Packets from the Firewalls Management and the request contained the variables name.
Inside the Radius Access Request the Endpoint IP is filled and the Framed-IP-Address is provided by the Accounting Start.
Is there anything i am missing?
Greatly appreciate any Help on that issue
with best regards,
Kevin