Security

last person joined: 19 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass - ASA - acl-set-name

This thread has been viewed 2 times

  • 1.  Clearpass - ASA - acl-set-name

    Posted Sep 19, 2016 11:41 AM

    I have ASA using Clearpass for 802.1x and DACL enforcement. This works great for ACL's define in an enforcement profile. 

     

    I woule like to create an Enforcement to call an ACL that already exists on the ASA. I beleive I want to use the 'acl-set-name' DACL per the ASA documentation. I do not see this as an option in the Cisco or the Cisco-ASA dictionaries. 

     

    How do I call an existing ACL?



  • 2.  RE: Clearpass - ASA - acl-set-name

    Posted Sep 19, 2016 01:05 PM

    I may have answered my own question. I think i need to use a Cisco AV-Pair and issue a URL Redirect and call the appropriate ACL. Just like you would for a switch. I dont have the propper code running on my Lab ASA but when I do, I will test this and post back for others.