Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

MAC Authentication And DHCP Profiling

This thread has been viewed 1 times

  • 1.  MAC Authentication And DHCP Profiling

    Posted Dec 04, 2018 10:25 PM
      |   view attached

    I am working on getting MAC Authenticaton working with Clearpass and Cisco Switches.

     

    I am having a hard time to get a device profiled correctly. I have ClearPass entered as a helper address. The problem I am having is trying to move a device into a role that only allows DHCP and then bounce the port to get the device profiled.

     

    I see the device get the correct role and I have a profile that downloads an ACL and then it is supposed to bounce the port the cient is connected to. 

     

    The problem is that the ACL gets downloaded correctly but the client port never gets bounced. I can manually disconnect the client by changing the status. 

     

    I need to be able to bounce the port automatically. 

     

    I have posted my profile I am working with.

     

    Any help is appreciateProfile.JPG



  • 2.  RE: MAC Authentication And DHCP Profiling

    EMPLOYEE
    Posted Dec 04, 2018 10:27 PM
    Did you follow the ClearPass Solution Guide for Wired Policy Enforcement?


  • 3.  RE: MAC Authentication And DHCP Profiling

    Posted Dec 05, 2018 08:30 AM

    Yes that is the guide I am following.



  • 4.  RE: MAC Authentication And DHCP Profiling

    EMPLOYEE
    Posted Dec 05, 2018 08:36 AM
    It shows the required configuration for a profile state and the profiler service function.