Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass cisco wired dot1x with dacl

This thread has been viewed 4 times

  • 1.  Clearpass cisco wired dot1x with dacl

    Posted Jul 12, 2018 04:58 PM
    Hello all,
    Am trying to wired dot1x clearpass with cisco c2960 switch ios 15.0 version,
    Am able to auhenticate the client but no dacl its seen on access tracker, and am using default template of dacl( permit tcp any any)

    Second thing am trying to apply coa ( cisck terminate session)
    And its not applied, even when am trying manually getting failed to apply on client mac address,
    Nad devic setting for cisco with port 3799 which same on cppm also,

    If its not support on switch can we use onconnect?

    Any suggeestion
    Thank you


  • 2.  RE: Clearpass cisco wired dot1x with dacl

    EMPLOYEE
    Posted Jul 12, 2018 05:00 PM
    Did you follow the ClearPass Solution Guide for Wired Policy Enforcement?


  • 3.  RE: Clearpass cisco wired dot1x with dacl

    Posted Jul 12, 2018 05:10 PM
    Yes i check it, and i have applied it on another cisco switches with different customer and it was wroking fine,

    Do i need to add vlan enforcment with dacl to make it work?
    Is there any tshoot document for dacl and coa?
    Thanks


  • 4.  RE: Clearpass cisco wired dot1x with dacl

    EMPLOYEE
    Posted Jul 12, 2018 05:12 PM
    Please double check the configuration. Something isn’t configured correctly.