Hi
To return the username in the Radius attribute create an enforcement profile for Radius:IETF User-Name and the value {%Endpoint:Owner}
You can verify the attribute for the owner in a request under Authorization attributes if you add a dummy role mapping checking any of the Endpoint attributes.
Depending on the firewall you have you may need to follow any of the tech notes for firewall integration.
------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------
Original Message:
Sent: Aug 29, 2024 11:11 AM
From: thojohnston
Subject: Clearpass + Google Admin Console Context Server and Owner ID
We are pulling our Chromebooks in via Google Admin Console Context server API. Its working well. The issue I'm facing is how to show the owner ID as the username and not the mac address. I intend to send these via RADIUS so our firewall but its sending the mac address as the username not the owner ID. Anyone ever do this?
In computed attributes the Endpoint:Owner is filled in with what we are pulling from Google and is correct. (name@org.com)
However in access tracker the username is the MAC address. How can I extract this Endpoint:Owner and use it as the username?
Not sure what other info I can give out to explain better.
Thanks for any help!