I am trying to build clearpass roles which distinguish when a user has logged onto a domain join PC or there own device
Something also the lines of
AD Account + Domain Join PC = Role_Trust
AD Account + non-domain joined PC = Role_untrust
Is this possible and how would I go about it,
The domain joined PC will be on the network and so will have
Domain Join PC = Role_DomainPC
I assume that the machine will auth based on the OU with the computers in, but when the user logs on, this doesnt include the information about the PC domain status.