Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

NAC profiling problem in multi-domain cisco mode

This thread has been viewed 0 times

  • 1.  NAC profiling problem in multi-domain cisco mode

    Posted Nov 29, 2018 08:23 AM

    On my swithes interfaces I use the host-mode multi-domain alowing to

    have domain VOICE and DATA on the same port.

     

    On CPPM profiling are acivated with DHCP for device and SNMP for the switchs.

     

    In some situation, when a computer is connected to a Phone, and the phone to a port switch, Endpoint Fingerprint are wrong for the computer: ClearPass use Phone CDP and SNMP information into  computer endpoint entry. In result for my computer, the Device Category is VoiP Phone and the Device OS Family is HP.