Security

Reply
Highlighted
New Contributor

Profiling tunneled users using IF-MAP

Hello,

Is it possible to profile wired tunneled users/devices using IF-MAP? I have enabled IF-MAP on MC. I can see fingerprint details (application data) of wireless users (corporate users - not Guest or onboarded users) in Clearpass, but there are no fingerprint details (application data) of wired users. Wired user is present in MC Client list and it is tunneled.

Any ideas?

 

Thank you,

Paulius Ivanauskas

Guru Elite

Re: Profiling tunneled users using IF-MAP

To be honest, I don;t have a direct answe to your question:

 

IF-MAP is used to send client details from a controller to ClearPass.  These details are typically available if the device communicates over port 80 and has a browser agent that is recognized.  Type "show aaa device-id-cache" to see if your device is recognized on the MD first to see if that information is available.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
New Contributor

Re: Profiling tunneled users using IF-MAP

Hello,

It is not recognised.

Actually, what I saw was my User in Traffic analysis>User list (cli command "show users" also gives info about it). The User was not present in Client list. Also command " show aaa device-id-cache mac " has shown that there was no info about it.

"show tunneled-node-mgr tunneled-users" shows that my user is tunneled succesfully.

Why tunneled user is not showing up in Client list/ device-id-cache?

 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: