Security

Hello everyone,

I'm try to configure Policy Manager Admin Network Login Service but read-only admin for CLI access is not working

hereunder the enforcement profiles:

Super Admin working for GUI and CLI

Read-only Admin working for GUI not CLI

Access Tracker show the request is accepted. but actually, it is not.



what I'm missing here? Thank you.

------------------------------
BR,
Mohanad
------------------------------

Is this for login to ClearPass itself?  Or to a NAD?
Original Message:
Sent: Jan 23, 2023 08:47 AM
From: mohanad.abdalrazik@outlook.com
Subject: read-only CLI access for CPPM network login | TACACS+

Hello everyone,

I'm try to configure Policy Manager Admin Network Login Service but read-only admin for CLI access is not working

hereunder the enforcement profiles:

Super Admin working for GUI and CLI

Read-only Admin working for GUI not CLI

Access Tracker show the request is accepted. but actually, it is not.

what I'm missing here? Thank you.

------------------------------
BR,
Mohanad
------------------------------

Clearpass itself.

similar case it says (The CLI is not designed for normal use.)

CLI read only access to CPPM

------------------------------
BR,
Mohanad
------------------------------

Original Message:
Sent: Jan 24, 2023 09:16 AM
From: ahollifield
Subject: read-only CLI access for CPPM network login | TACACS+

Is this for login to ClearPass itself?  Or to a NAD?
Original Message:
Sent: Jan 23, 2023 08:47 AM
From: mohanad.abdalrazik@outlook.com
Subject: read-only CLI access for CPPM network login | TACACS+

Hello everyone,

I'm try to configure Policy Manager Admin Network Login Service but read-only admin for CLI access is not working

hereunder the enforcement profiles:

Super Admin working for GUI and CLI

Read-only Admin working for GUI not CLI

Access Tracker show the request is accepted. but actually, it is not.

what I'm missing here? Thank you.

------------------------------
BR,
Mohanad
------------------------------

Correct, this is not valid.  There is no concept of read-only ClearPass CLI.  The ClearPass CLI is only used for troubleshooting, etc. all normal operations are handled via the GUI.
Original Message:
Sent: Jan 25, 2023 05:09 AM
From: mohanad.abdalrazik@outlook.com
Subject: read-only CLI access for CPPM network login | TACACS+

Clearpass itself.

similar case it says (The CLI is not designed for normal use.)

CLI read only access to CPPM

------------------------------
BR,
Mohanad

Original Message:
Sent: Jan 24, 2023 09:16 AM
From: ahollifield
Subject: read-only CLI access for CPPM network login | TACACS+

Is this for login to ClearPass itself?  Or to a NAD?
Original Message:
Sent: Jan 23, 2023 08:47 AM
From: mohanad.abdalrazik@outlook.com
Subject: read-only CLI access for CPPM network login | TACACS+

Hello everyone,

I'm try to configure Policy Manager Admin Network Login Service but read-only admin for CLI access is not working

hereunder the enforcement profiles:

Super Admin working for GUI and CLI

Read-only Admin working for GUI not CLI

Access Tracker show the request is accepted. but actually, it is not.

what I'm missing here? Thank you.

------------------------------
BR,
Mohanad
------------------------------