Thanks for the reply - is this a supported method of getting info? Ive had a quick look and can’t see any references to using it.
Im already calling a stored procedure in an external database SQL database as an authorization source - is this what you mean? Or is there a way to query ClearPass from the outside?
The issue I have with the SQL integration as I’m using at the moment is if the request doesn’t have the info available (eg. a request from a wired switch won’t supply an access point parameter), then ClearPass fails to build the query and doesn’t run the SQL - unless I’m doing it wrong 😀
As an example - I added a filter just for the wifi data. This gets around the whole authorization source failing if a data point doesn't exist, but still, if the authorization source is used by a switch then an alert/error is generated with the following text
Failed to construct filter=EXEC sp_clearpassWifi
@mac = '%{Connection:Client-Mac-Address-NoDelim}',
@apSsid = '%{Radius:Aruba:Aruba-Essid-Name}',
@apGroup = '%{Radius:Aruba:Aruba-AP-Group}',
@apName = '%{Radius:Aruba:Aruba-Location-Id}'.
Failed to get value for attributes=[wifi-data]