Security

 View Only
last person joined: 22 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

read-only CLI access for CPPM network login | TACACS+

This thread has been viewed 20 times
  • 1.  read-only CLI access for CPPM network login | TACACS+

    Posted Jan 23, 2023 08:47 AM
    Hello everyone,

    I'm try to configure Policy Manager Admin Network Login Service but read-only admin for CLI access is not working

    hereunder the enforcement profiles:

    Super Admin working for GUI and CLI

    Read-only Admin working for GUI not CLI

    Access Tracker show the request is accepted. but actually, it is not.



    what I'm missing here? Thank you.


    ------------------------------
    BR,
    Mohanad
    ------------------------------


  • 2.  RE: read-only CLI access for CPPM network login | TACACS+

    Posted Jan 24, 2023 09:16 AM
    Is this for login to ClearPass itself?  Or to a NAD?


  • 3.  RE: read-only CLI access for CPPM network login | TACACS+

    Posted Jan 25, 2023 05:10 AM
    Clearpass itself.

    similar case it says (The CLI is not designed for normal use.)

    CLI read only access to CPPM

    ------------------------------
    BR,
    Mohanad
    ------------------------------



  • 4.  RE: read-only CLI access for CPPM network login | TACACS+

    Posted Jan 25, 2023 09:23 AM
    Correct, this is not valid.  There is no concept of read-only ClearPass CLI.  The ClearPass CLI is only used for troubleshooting, etc. all normal operations are handled via the GUI.