Security

last person joined: 23 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Manually created role. [Guest] always applied

This thread has been viewed 2 times

  • 1.  Manually created role. [Guest] always applied

    Posted Sep 11, 2019 08:58 PM

    I'm manually creating an user in CPPM Guest. I have a role mapping defined that maps
    ROLE ID 1 = [Guest]
    ROLE ID 5 = Elementary Guest

     

    When the user logs in, the custom role is assigned, but also the Guest role is assigned. Even though I can check the Guest user repository, and the ROLE ID = 5. 

    I would just remove the [Guest] role from the mapping, but I'm using it in the enforcement profile to distinguish Self-Registered users, from my manually created users.

    2019-09-11_19-47-45.png

    For now, I just added a rule that says if ROLE = [Guest] and MATCHES ANY of the ones I want to exclude, but it's ugly.

     

    Thanks!



  • 2.  RE: Manually created role. [Guest] always applied

    EMPLOYEE
    Posted Sep 11, 2019 09:30 PM
    It's a system generated tag/role. If you're not using it, just ignore it.


  • 3.  RE: Manually created role. [Guest] always applied

    Posted Sep 11, 2019 09:33 PM
    So, it is always applied no matter what? Even if the ROLE ID != 1

    I thought I was missing something.


  • 4.  RE: Manually created role. [Guest] always applied
    Best Answer

    EMPLOYEE
    Posted Sep 12, 2019 11:47 AM

    Correct. It's system generated.