Screnshots of your role mapping/enforcement would be helpful.
But he's getting the roles [Other], [User Authenticated]
Based on what I see in your enforcement policy, that doesn't match any rule you have, so he'll get the default rule (Deny Access)
So you need to look in your input tab, at your authorization tab, see which OU clearpass sees, and make sure that is included in your role mapping