Security

last person joined: 20 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Use NAS-Port-Type as Rule

This thread has been viewed 14 times

  • 1.  Use NAS-Port-Type as Rule

    Posted Dec 19, 2018 01:07 PM

    hi there,

     

    How can I use the NAS-Port-Type, or the connection type, as a rule within Enforcement Profile?

    I can't seem to find it.

     

    Thanks



  • 2.  RE: Use NAS-Port-Type as Rule

    EMPLOYEE
    Posted Dec 19, 2018 01:16 PM
    You should be building services based on medium. It's not designed to be used in enforcement.


  • 3.  RE: Use NAS-Port-Type as Rule

    Posted Feb 06, 2023 11:44 AM

    Hi,

    We was able to use it by a small workaround by adding a custom sql query to the Endpoints Repository.

    Configuration -> Authentication -> Sources -> Endpoints Repository. ->Attributes -> Add more filters

    Name: whatever you want
    Query: SELECT '%{Radius:IETF:NAS-Port-Type}'::Integer as NAS_Port_Type

    Name & Alias Name = "NAS_Port_Type"
    Type: Integer

    Save.


    Then you can use it in your Enformcent policies under Authorization:[Endpoints Repository]:NAS_Port_Type



    Original Message