Wireless Access

 View Only

Restrict Device Shared using AD Groups

This thread has been viewed 5 times
  • 1.  Restrict Device Shared using AD Groups

    Posted Apr 18, 2024 10:00 AM

    I am trying to restrict Airgroup printers to specific AD groups.   Currently, I can limit printer access using the "Shared  Locations" field and "Shared With field, but whenever I use the "Shared Groups" field and specify an AD group it doesn't appear to be working.  I have confirmed under Authorization Attributes for users, CPPM is pulling AD groups.  Our Clearpass setup is configured to work with a few other domains since multiple agencies use this one system.  I tried specifying the group by itself, domain\group name, but still the same result.  I am skimming through the manual and Airhead threads to see if anything specific needs to be configured on AD for this to work, but so far I haven't come across anything.  

    I've read a few threads that mention setting up user roles and basing the assignment of roles on AD groups, but before I go that route I wanted to see if specifying AD groups on shared devices will work.  

    ClearPass Policy Manager 6.11.3