Having got the ClearPass Guest device registration page set up and working, we now want to allow registered wired games consoles to be placed into a "games vlan" on a switch. I do this by assigning a "UoY Game Device" Role to the device and using this in the Enforcement policy.
In my Service I've added [Guest Device Repository[ Local SQL DB to the Authorization section of my service and then added
(Authorization:[Guest Device Repository]:AccountStatus EQUALS 1)
AND (Authorization:[Endpoints Repository]:Category EQUALS Game Console) ........
to the Role Generation section
In Clearpass Guest ( see attached file you can see an AcountStatus set to 1
However, in Policy Manager, for this devices Authenticatication I see
Authorization:[Guest Device Repository]:AccountStatus | 0 |
Authorization:[Guest Device Repository]:RemainingExpiration | 31535121 |
Authorization:[Guest Device Repository]:SponsorName | csrv107 |
So one end says Acount Status=1 while the other says Account status=0
A