Security

Am kind of new to Aruba clear pass and controller so i need your kind help.

I need to implement wired and wireless using dot.1x

Here is what i did up to the moment but am still stuck 

1- joined the clear pass to AD

2- Added the AD to clear pass as authentication source

3- Added the controller as N A D on the clear pass and vice versa

As per my customer requirement he needs 2 SS IDs 1 for the employee and 1 for the guest.

The employee SS ID has 3 possibilities

- The employee has corp PC and joined to domain plus its healthy (Full access)

-The employee has corp PC and joined to domain but its not healthy (Quarantine )

- The employee has personal laptop and want to access the internet with his domain controller credentials

- The employee has mobile and wants to connect to the internet with his Domain controller credentials

The issue now is i need your help to implement the services that match these rules on both sides Clear pass and Aruba Controller

Note that the customer will assign the guest in V LAN 32 and the corp users in 33 and for the smartphones V LAN 31

Hi there,

There is probably not a "quick" answer to your question, if you are not too familiar with ClearPass just, yet.

What I can highly recommend is the video series of my colleague @Herman Robers

https://www.youtube.com/watch?v=wUK3BE7jMVY&list=PLsYGHuNuBZcb0xD05v9zdwv7NlUG_8oJS

There are videos in the series, that explicitly talk about wired & wireless 802.1x with ClearPass.

ClearPass has various service templates for different use cases, that might help with the initial configuration of ClearPass: https://www.arubanetworks.com/techdocs/ClearPass/6.8/PolicyManager/index.htm#CPPM_UserGuide/Services/ServiceTemplates.htm

On the ArubaOS side it is quite "standard" 802.1x authentication.

Maybe you can drop a few more specific questions, as the come along upon configuring the system.