Security

o.k. fair enough. We do "things" to blacklist people anyway,just wondered if it was a general "blacklist feature" in policy manager

I built a static host list called blacklist, added the mac-addresses to the list, then built the role, profile and service. It works great for me.

o.k. fair enough. We do "things" to blacklist people anyway,just wondered if it was a general "blacklist feature" in policy manager

Static Hosts Lists are legacy ClearPass feature and are no longer recommended for use.  This method also has no protection against MAC spoofing.

I built a static host list called blacklist, added the mac-addresses to the list, then built the role, profile and service. It works great for me.

o.k. fair enough. We do "things" to blacklist people anyway,just wondered if it was a general "blacklist feature" in policy manager

If static host lists are not recommended, How do you do mac auth bypass?

Static Hosts Lists are legacy ClearPass feature and are no longer recommended for use.  This method also has no protection against MAC spoofing.

I built a static host list called blacklist, added the mac-addresses to the list, then built the role, profile and service. It works great for me.

o.k. fair enough. We do "things" to blacklist people anyway,just wondered if it was a general "blacklist feature" in policy manager

Profiling

If static host lists are not recommended, How do you do mac auth bypass?

Static Hosts Lists are legacy ClearPass feature and are no longer recommended for use.  This method also has no protection against MAC spoofing.

I built a static host list called blacklist, added the mac-addresses to the list, then built the role, profile and service. It works great for me.

o.k. fair enough. We do "things" to blacklist people anyway,just wondered if it was a general "blacklist feature" in policy manager