Security

 View Only
  • 1.  Clearpass distributed deployment - Endpoint Database

    Posted Oct 09, 2020 03:58 AM

    We have distributed ClearPass deployment and the problem is how can we differentiate endpoint database country/region wise.

     

    It will be very useful if listing the devices zone/region/country wise.

     

    Is it possible? can anyone suggest on this or workaround?

     

    Thanks,

    Yugandhar.



  • 2.  RE: Clearpass distributed deployment - Endpoint Database
    Best Answer

    Posted Oct 09, 2020 07:36 AM

    The endpoint repository is maintained by the Publisher so the db is centralized

    One thing you could do is , assign a custom attribute based on the device location when the device authenticates





    Thank you

    Victor Fabian

    Pardon typos sent from Mobile



  • 3.  RE: Clearpass distributed deployment - Endpoint Database
    Best Answer

    Posted Oct 09, 2020 02:33 PM

    To add to Victors suggestion.... add a custom TAG to the NAD like my example below, I have multiple, one could be a country, city etc. just something that identify the location of the NAD

     

    ClearPass_Policy_Manager_-_Aruba_Networks.png

    Then in access-tracker when it authN this data is carried through, you could then add this as custom endpoint attributes for a device....

     

    ClearPass_Policy_Manager_-_Aruba_Networks.png



  • 4.  RE: Clearpass distributed deployment - Endpoint Database

    Posted Oct 10, 2020 12:42 AM

    Thank you very much for your response.

     

    I tried it and worked for me.

     

    Thanks,

    Yugandhar.