Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Block MAC address regardless of service?

This thread has been viewed 3 times

  • 1.  Block MAC address regardless of service?

    Posted May 08, 2017 02:58 PM

    Hello,

     

    We have less than 10 PCI devices we need to block from Wireless. I want to create a rule in Clearpass that will not provide them access to Wi-Fi. Do i have to create an enforcment profile Rule for the 802.1x and the mac auth service? or there is an area in clearpass that will allow me to block the mac address regardless of the service?

     

    Thank you

    Nils 



  • 2.  RE: Block MAC address regardless of service?

    Posted May 08, 2017 05:27 PM

    I spoke with TAC, the best way to blacklist mac addresses from the wireless is to create a new service that reference a static host list. The enforcement profile will push a deny profile when the request is coming from the static host list regardless of the SSID. 



  • 3.  RE: Block MAC address regardless of service?

    EMPLOYEE
    Posted May 09, 2017 08:15 AM
    What about if the user changes their MAC address?


  • 4.  RE: Block MAC address regardless of service?

    Posted May 09, 2017 05:37 PM

    I have not seen the devices yet, but the company explained me the handhelds are owned by the company and do not have a screen for users to change the settings. There must be a way to console to it and spoof the mac address, however I am assuming the device is password protected too.