Security

last person joined: 7 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass role to WLC Cisco.

This thread has been viewed 2 times

  • 1.  Clearpass role to WLC Cisco.

    Posted Feb 05, 2019 10:47 PM
    I know that with an Radius enf prof I can send to the controller the role of the user so that he can apply some additional configuration of the controller.
    Radius aruba--aruba users role--xxxx

    The question is how I sent the role to a
    Cisco controller and apply additional configs from the WLC?


  • 2.  RE: Clearpass role to WLC Cisco.

    Posted Feb 05, 2019 11:52 PM

    Taking a shot in the dark here because one, I don't have Cisco WLCs anymore and two, I don't have Clearpass but I believe you can do this with AAA override.

     

    You will need to configure Clearpass with the correct RADIUS VSAs and instead of sending a user-role in the enforce profile you would send the VLAN or ACL name.

     

    https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-6/config-guide/b_cg86/wlan_security.html#d165970e4935a1635