AirHeads:
I'm attempting to migrate our FreeRadius implementation to ClearPass - and while I have something working ... it's rather embarrasingly messy.
For example: in my main role map, I'm checking that the Certificate:Issuer-CN EQUALS "/CN=WPI NetOps Wireless CA...." using the full Certificate Path as the string match. As I said it works, but I have these huge long strings which are subject to typos not easily discovered. It gets worse when you want to add in both your production CA and test CA in the same BELONGS_TO in order to make sure either certificate gives the same results.
This seems rather silly, as I've already been able to upload the CA Certificate to the ClearPass appliance. Is there any way to reference the CA I've uploaded rather than typing in the full certificate path? Perhaps some shiny, happy click of a few checkboxes?
Thanks!