Security

Reply
Occasional Contributor II

Clearpass Radius Authentication Source based on Zone

Hello, I have a Clearpass cluster with a publisher and two subscribers. Both subscribers are in their own zones and I would like to configure it in such a way that devices authenticating a specific zone will use its local authentication source first. I can't seem to find an easy way to configure this without having to create 3 different services and doing something manual like using device groups to map devices to each service. Thoughts? Ideas? Much appreciated. 

 

Thanks!, 

 

Guru Elite

Re: Clearpass Radius Authentication Source based on Zone

What is the authentication source?

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Occasional Contributor II

Re: Clearpass Radius Authentication Source based on Zone

Authenticating to AD servers via LDAPS

Guru Elite

Re: Clearpass Radius Authentication Source based on Zone

On each subscriber, configure the local DCs as password servers.


http://www.arubanetworks.com/techdocs/ClearPass/6.6/PolicyManager/Content/CPPM_UserGuide/Admin/ServerConfig_addpwdserver.htm

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Occasional Contributor II

Re: Clearpass Radius Authentication Source based on Zone

Ok so I can have a single service for all of my devices with all of the AD servers added as authentication sources. Then configure the subscribers with this password server list of the local servers only? 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: