I can see that I can Enbale in AD attribute for example Departmnet as a role or as attrbute or both so what is the deiffrence and what scnarios can be driven from this both checks?
So if I enable IT DEPT as a role this doesnt need role mapping?
Yes, for example if Department = NetOps, the user are automatically tagged with the Role name NetOps in Clearpass.
PS: Roles in clearpass are independent of User-Roles on the Aruba Controllers.
Thanks for clearing up so you say thet roles section in clearpasss is Only for aruba Controller firewall roles only??
Think of it this way:
Clearpass role: just a label
Aruba user-role: firewall policy
You guys are awsome I really learn alot from you and thank you so much for clearing things up and Hope to be like you
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.