Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CPPM As RADIUS Authenticator

This thread has been viewed 0 times

  • 1.  CPPM As RADIUS Authenticator

    Posted Apr 11, 2018 10:50 AM

    Hello, i want to use CPPM as a RADIUS authentication source for LAN Switches.  I know i need to add a Device for the LAN Switch and a Service but i cannot see where i link the Device to use the Service?  do i need to do this or will defined Devices look at all Services until they come to one which matches?

     

    Thanks

     

    Ryan



  • 2.  RE: CPPM As RADIUS Authenticator

    Posted Apr 11, 2018 10:54 AM

    All authentication devices will look at the Service conditions to determine whether the service applies to its authentication request.    You can add various conditions to ensure the switch in question matches your desired service.  

     

    Two examples to match your switch:

     

    Radius:IETF - NAS-IP-Address - EQUALS - X.X.X.X

    Connection - NAD-IP-Address - BELONGS_TO_GROUP -  [name of custom group for switches]



  • 3.  RE: CPPM As RADIUS Authenticator

    Posted Apr 11, 2018 11:05 AM

    ok thanks, so from below i can group the LAN Switches in a Device group and use this as the Service condition, got it.

     

    Thanks for quick response

     

    Ryan