Hi everyone,
I'm a bit new to clearpass. I have managed to get authentication to happen pretty easily from AD credentials, but the enforecement is giving me some problems. We have a mix of Windows (AD joined), Chromebooks, and iPads that we would like to allow access to our main network, but deny all other users. These are essentially "trusted devices".
Since we are not doing just Windows devices, I cannot enforce machine authentication. I have added the Google Admin Console as an "endpoint repository". I've tried enforcing a rule of dropping all by default and allowing devices in the "known" endpoint repository. That has resulted in all devices being denied.
Could someone point me in the right direction for how I should think about allowing these devices?
Thanks in advance!