Hi Seth,
Should probably have defined "endpoints'
Customer is refering to laptops and desktops that have TPM on the motherboards and the objective is to be able to detect "perfect" clones which would be identical in all respects, including mac adddress, with the exception of the cryptographic stuff in the TPM.
The exact wording:
"One of these involved the need for NAC to identify a cloned workstation using unique hardware properties such as TPM as part of the security posture assessment."
Without a way to address this ClearPass does not get on the short list implying at least one of the competitors can.
Regards
ROnnie