Security

last person joined: 19 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Aruba ClearPass Integration with SRX Firewall

This thread has been viewed 2 times

  • 1.  Aruba ClearPass Integration with SRX Firewall

    Posted May 29, 2016 05:25 PM

    Dears,

    I want to integrate between Aruba CP & Juniper SRX so that SRX can accept or reject sessions/connections based on health posture that comes from ClearPass.

    Is it doable or not?

     

    BR,

    Mustafa AbdelAziz



  • 2.  RE: Aruba ClearPass Integration with SRX Firewall

    EMPLOYEE


  • 3.  RE: Aruba ClearPass Integration with SRX Firewall

    Posted May 29, 2016 05:58 PM

    Thanks Tim,

    I have already read this technote, and It's clear that CP can send posture check status to SRX.

    But I need to know if SRX can use this information (Posture Check) to block User connection or not ?

    Just want to clarify more about my case, I don't need any Raduis attributes to be sent to NAD device, I only need Firewall to control user access by knowing his health status (No Raduis, no authentication required)

    Is it doable?

     

    BR,

    Mustafa Abdel Aziz



  • 4.  RE: Aruba ClearPass Integration with SRX Firewall

    EMPLOYEE
    Posted May 29, 2016 06:00 PM
    You would need to write policy based on what is provided. You might want to leverage Juniper's documentation on writing role and identity based policy.