Hi,
Edit: forgot to mention i am running latest 6.7
pretty new to OnGuard, i am trying to configure it. As far as i understand the authentication flow would look like something like this:
- client connects and authenticates using dot1x. Because posture is "unknown" the client is placed in a "staging" vlan.
- At this point the client has an ip and can connect to ClearPass
- Onguard agent detects it's on the network and send posture information to ClearPass. At this point ClearPass knows whether the client is Healthy or whether it should be quarantined.
- ClearPass Onguard action is to bounce the port so that the client is forced to reauthenticate, this time with the cached information from the posture.
Problem is within the Webauth service that has the posture enabled, i cannot enable "Use cached roles and posture attributes", it is greyed out, therefore the client posture is always unknown.
Any ideas?
thanks