10-11-2018 12:17 PM
It is possible that customers who connect by VPN from their laptops, etc. and authenticate in the Firewall go through a second authentication that is Clearpass and assign Roles? that is to say that they authenticate first with the Firewall and later with Clearpass, perhaps with a local user database where the VPN users reside. I hope you can support me.
Solved! Go to Solution.
10-16-2018 06:40 PM
Generallty speaking we did try to engage with WG about 2.5-years back but they lacked motivation to work with us. Specific to your VPN query, anything is possible but VPN creates additional hurldes due to it being a L3 connection and CPPM 'typically' wanting to see a endpoint mac-address in the auth. We can authN VPN but there can be some challanges especially if we need to trigger a post-auth action, i.e. update the firewall with some API call.
ClearPass Product Manager
-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.