We are a higher edu environment and have several hundred 205H and 303H Access points in our dorms. We are attempting to secure the switch ports in the bottom of these APs. We would like to manage this with Clearpass. There are a few types of devices and associated VLANs those devices get assigned to. This design is all implemented on wireless networks currently, but I cannot seem to get it functioning correctly for the wired ports.
Device types are:
-gaming/streaming (non 802.1x)
-computers and other 802.1x devices.
We have Windows environment with AD and NPS servers handling logins.
When a device is plugged into the ports on the 25/303 AP, we need Clearpass to check if it is a registered device and then do MAC Auth assignment for the non 802.1x devices. If it is a laptop, that is not registered for MAC auth then Clearpass needs to request 802.1x credentials from the client for proper authentication and VLAN assignment.
Does anyone have a how to guide to guide us through the controller and clearness setup of this? We have already started to make some of the appropriate profiles and changes, for example we have changed our controller ports, so clients connected now show up as users int he controller, and we have built out or plan assignment profiles. We are looking for a thorough guide to assist us with the remainder of this setup.
Thank you in advance