Hi Team,
You can disable the port on a switch, based on a policy ClearPass?
For example: The user is connected to the INTERFACE 0/1 switch. If the user is unknown, disable INTERFACE 0/1 switch.
Regards,
When a user connects to the router and the MAC is not recognized, for it to send a message to the router and disable the physical interface of the router.
The option is?
For Example: subscriber:command=bounce-host-port
Attachment image
Try:
subscriber:command=disable-host-port
Why do you want to do it this way? I believe this will require manual intervention to re-enable the port. Why not just put them in a dead-end VLAN?
Hi,
The customer wants this security. The command disables the port where the user is connecting?
Ok, perfect.
I will propose the scheme mention
Thanks :smileyvery-happy:
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.