Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

how to get FQDN of device via clearpass mac authentication

This thread has been viewed 2 times

  • 1.  how to get FQDN of device via clearpass mac authentication

    Posted Oct 05, 2015 06:24 PM

    hi,

    am trying to integrate cppm via cisco switch,

    tryin to get  FQDN of device while doing mac auth mab,

    issue is am only getting mac address of device as a username

    any advise



  • 2.  RE: how to get FQDN of device via clearpass mac authentication

    EMPLOYEE
    Posted Oct 05, 2015 06:26 PM

    That is not possible as FQDN is not used during a MAC-authentication.

     

    You could potentially try using the Audit Endpoint option, but you will likely get mixed results.



  • 3.  RE: how to get FQDN of device via clearpass mac authentication

    Posted Oct 05, 2015 06:54 PM

    we have more than 10 domain and the customer doesnt want to integrate it with cppm for aech,

     

    i just want to retrieve FQDN

    ec: pc1.domain1.com

    and use domain1 attribute to redirect that domain user to another vlan,

     

    i just want cppm to get that attrubutes on the access tracker,

    it worked but when i shut the cisco port and enabled again ,i got authentication failed on cisco sswitch



  • 4.  RE: how to get FQDN of device via clearpass mac authentication
    Best Answer

    EMPLOYEE
    Posted Oct 05, 2015 06:56 PM
    You need to use 802.1X Machine Authentication for this. You won't be able to
    consistently grab the host name during a MAC-authentication.