I created a policy in ClearPass that I thought would only allow a machine and user that is authenticted against our AD to gain access.
The rule Matches All the following conditiions
TIPS Role equals [machine Authenticated]
TIPS Role equals [User Authenticatd] than assign the role employee
The problem is as long as a user is authenticated by our AD they can get on with any device
Ie. A IPad that is not in our AD but a valid user in our AD can sign in with the IPAD. What am I not understanding?