Security

last person joined: 20 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Force Client/Device disconnect

This thread has been viewed 12 times

  • 1.  Force Client/Device disconnect

    Posted Aug 07, 2019 08:23 AM

    Hi everybody,

     

    I have a Aruba Wireless Setup (MM and 7210 version 8.4.0.4) + Aruba Clearpass (version 6.8.1).

     

    The setup is configured as follows:

    Alle Clients/Devices are connecting to one single SSID.

    User are: teachers, students, classroom notebooks, management staff, etc.

    The role mapping is bound to Microsoft AD Groups.

    There is a limitation for example: students can only connect 3 different devices and only can login between 6am and 22pm.

    Now I have to disconnect the students at 22pm.

     

    How this could be done?

    I think about CoA? Calculate a session timeout and give it back to the controller? Reauth timer?

    How I can implement this?

     

    Thank you and best regards,

    philipp



  • 2.  RE: Force Client/Device disconnect

    EMPLOYEE
    Posted Sep 04, 2019 06:28 AM

    Use Session Timeout.

     

    Compute this time as 10pm - Current time using Time Source



  • 3.  RE: Force Client/Device disconnect

    Posted Sep 10, 2019 10:23 AM

    Ok it's working now.

    This guide is working: https://community.arubanetworks.com/t5/Security/How-to-disconnect-Users-at-a-specified-time/td-p/212407

    Just have to configure own time values in the time source.