Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Can I limit to only one device when a user connects on my EAP-PEAP ssid?

This thread has been viewed 0 times

  • 1.  Can I limit to only one device when a user connects on my EAP-PEAP ssid?

    Posted Aug 16, 2015 05:14 PM

    Hi Forum,

     

    Can AuthorizationEndpoint>>Unique_device_count>>GreaterThan>>1   then deny access profile

    Do the trick?

     

     

    Thanks in advance,



  • 2.  RE: Can I limit to only one device when a user connects on my EAP-PEAP ssid?

    EMPLOYEE
    Posted Aug 16, 2015 05:18 PM
    Yes but you need to put the endpoints repository it the authorization sources


  • 3.  RE: Can I limit to only one device when a user connects on my EAP-PEAP ssid?

    Posted Aug 16, 2015 05:26 PM

    Sounds good. I will try tomorrow and give you a Kudos.



  • 4.  RE: Can I limit to only one device when a user connects on my EAP-PEAP ssid?

    Posted Aug 17, 2015 11:04 AM

    I did exactly this and it did not work. My controller had 0 users when I connected and all 3 devices were able to connect to eap-peap SSID and get an IP address. For testing -see below- I want to deny access if you are on more than one device with AD credentials.

    Screen Shot 2015-08-17 at 7.51.37 AM.png



  • 5.  RE: Can I limit to only one device when a user connects on my EAP-PEAP ssid?

    Posted Sep 07, 2015 08:16 AM

    Have you added the Clearpass in the Accounting Group of the AAA profile of the controller configuration?