Security

last person joined: 22 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

ClearPass 802.1x Wired Vlan Selection with AD Security Groups

This thread has been viewed 1 times

  • 1.  ClearPass 802.1x Wired Vlan Selection with AD Security Groups

    Posted Oct 23, 2018 07:32 PM

    I have searched the forum and am yet to find a solution that works for me.

     

    I would like to have ClearPass authenticate against an AD Security Group. The group isn't shown when I view the Radius Authorization Attributes. 

     

    I have tried to use the "Groups" field in my enforcement policy but cannot get it to match on the group.

     

    Is there a way to have ClearPass check a specific AD security group for a user when that group isn't listed in memberOf?



  • 2.  RE: ClearPass 802.1x Wired Vlan Selection with AD Security Groups

    EMPLOYEE
    Posted Oct 23, 2018 07:43 PM
    Is it a nested group?


  • 3.  RE: ClearPass 802.1x Wired Vlan Selection with AD Security Groups

    Posted Oct 23, 2018 07:56 PM

    It is. 

     

    The users are in domain/corporation-name/Employees

    The security group is in domain/corporation-name/Network/security-group

     

    Then within that security group there are many other groups that eventually conrtain the user.



  • 4.  RE: ClearPass 802.1x Wired Vlan Selection with AD Security Groups