02-11-2016 09:24 PM
I have seen plenty of community posts and directions provided where using an Aruba VSA to an external RADIUS server you can deduce a Vlan identifier.
But what about if CPPM is the RADIUS server (not pointing to an external one) and he is talking to OpenLDAP for authentication and authorisation ?
Solved! Go to Solution.
02-11-2016 09:29 PM
You use role mapping to map LDAP attributes to ClearPass roles (TIPS roles), then use those TIPS roles in your enforcement policy to return a VLAN enforcement profile and/or role.
Sent from Nine
| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |