Security

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own
------------------------------

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

Sorry - I should have been more clear.  I can click through individual endpoints and the IP info is present (from IP helper data).

My question was related to the "Monitoring> Profiler and Network Scan> Endpoint Profiler" and "Configuration> Identity> Endpoints" views.  In these views, I see info. like MAC Address, Hostname, Device Category, Device OS Family, Status.  I was wondering if there is a place to see all of this data along with the current IP address(es) in a single view.

Thanks!
Original Message:
Sent: Nov 06, 2022 03:04 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

Hi Scott,

Could you explain where you need it for, what purpose? In the Endpoint Profiler you don't see the IP addresses. But in the endpoint database you have all attributes together but is visible per endpoint entry (Device Category, Family, Devicename, Hostname, IP).

Maybe the Insight database is something where your looking for (have to enable it under Administration > Server Configuration > Server).


------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own
------------------------------

Original Message:
Sent: Nov 07, 2022 11:01 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Sorry - I should have been more clear.  I can click through individual endpoints and the IP info is present (from IP helper data).

My question was related to the "Monitoring> Profiler and Network Scan> Endpoint Profiler" and "Configuration> Identity> Endpoints" views.  In these views, I see info. like MAC Address, Hostname, Device Category, Device OS Family, Status.  I was wondering if there is a place to see all of this data along with the current IP address(es) in a single view.

Thanks!
Original Message:
Sent: Nov 06, 2022 03:04 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

It would be useful to filter on.  For instance, say I expect a certain IP range to be used for all of my Security cameras...I could filter on 10.x.x.x and see all endpoints that have been profiled, and what type of device they're being identified as. 

Insights would work for me, but that's assuming everything has passed through a dot1x process - I'm still in the phase where I'm enumerating all of my endpoints.
Original Message:
Sent: Nov 07, 2022 02:55 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Could you explain where you need it for, what purpose? In the Endpoint Profiler you don't see the IP addresses. But in the endpoint database you have all attributes together but is visible per endpoint entry (Device Category, Family, Devicename, Hostname, IP).

Maybe the Insight database is something where your looking for (have to enable it under Administration > Server Configuration > Server).

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 07, 2022 11:01 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Sorry - I should have been more clear.  I can click through individual endpoints and the IP info is present (from IP helper data).

My question was related to the "Monitoring> Profiler and Network Scan> Endpoint Profiler" and "Configuration> Identity> Endpoints" views.  In these views, I see info. like MAC Address, Hostname, Device Category, Device OS Family, Status.  I was wondering if there is a place to see all of this data along with the current IP address(es) in a single view.

Thanks!
Original Message:
Sent: Nov 06, 2022 03:04 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

You can filter in the Endpoint repository on the client IP:
Would that work?

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------

Original Message:
Sent: Nov 07, 2022 03:25 PM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

It would be useful to filter on.  For instance, say I expect a certain IP range to be used for all of my Security cameras...I could filter on 10.x.x.x and see all endpoints that have been profiled, and what type of device they're being identified as.

Insights would work for me, but that's assuming everything has passed through a dot1x process - I'm still in the phase where I'm enumerating all of my endpoints.
Original Message:
Sent: Nov 07, 2022 02:55 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Could you explain where you need it for, what purpose? In the Endpoint Profiler you don't see the IP addresses. But in the endpoint database you have all attributes together but is visible per endpoint entry (Device Category, Family, Devicename, Hostname, IP).

Maybe the Insight database is something where your looking for (have to enable it under Administration > Server Configuration > Server).

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 07, 2022 11:01 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Sorry - I should have been more clear.  I can click through individual endpoints and the IP info is present (from IP helper data).

My question was related to the "Monitoring> Profiler and Network Scan> Endpoint Profiler" and "Configuration> Identity> Endpoints" views.  In these views, I see info. like MAC Address, Hostname, Device Category, Device OS Family, Status.  I was wondering if there is a place to see all of this data along with the current IP address(es) in a single view.

Thanks!
Original Message:
Sent: Nov 06, 2022 03:04 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott

Yeah, that definitely works.  Visually, I would think it could make sense to include the IP as an optional column in the main view, though.

Thanks for the responses.
Original Message:
Sent: Nov 10, 2022 09:47 AM
From: Herman Robers
Subject: ClearPass Endpoint IP Address View

You can filter in the Endpoint repository on the client IP:
Would that work?

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.

Original Message:
Sent: Nov 07, 2022 03:25 PM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

It would be useful to filter on.  For instance, say I expect a certain IP range to be used for all of my Security cameras...I could filter on 10.x.x.x and see all endpoints that have been profiled, and what type of device they're being identified as.

Insights would work for me, but that's assuming everything has passed through a dot1x process - I'm still in the phase where I'm enumerating all of my endpoints.
Original Message:
Sent: Nov 07, 2022 02:55 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Could you explain where you need it for, what purpose? In the Endpoint Profiler you don't see the IP addresses. But in the endpoint database you have all attributes together but is visible per endpoint entry (Device Category, Family, Devicename, Hostname, IP).

Maybe the Insight database is something where your looking for (have to enable it under Administration > Server Configuration > Server).

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 07, 2022 11:01 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Sorry - I should have been more clear.  I can click through individual endpoints and the IP info is present (from IP helper data).

My question was related to the "Monitoring> Profiler and Network Scan> Endpoint Profiler" and "Configuration> Identity> Endpoints" views.  In these views, I see info. like MAC Address, Hostname, Device Category, Device OS Family, Status.  I was wondering if there is a place to see all of this data along with the current IP address(es) in a single view.

Thanks!
Original Message:
Sent: Nov 06, 2022 03:04 PM
From: marcel koedijk
Subject: ClearPass Endpoint IP Address View

Hi Scott,

Do you have an DHCP IP helper address on your switch (per client vlan) that's pointed to your ClearPass server? When ClearPass received the DHCP requests of the clients it will not answer the client but use the DHCP information to profile your clients in the endpoint database automatically.

------------------------------
Marcel Koedijk | MVP Expert 2022 | ACEP | ACMP | ACCP | ACDP | Ekahau ECSE | Not an HPE Employee | Opinions are my own

Original Message:
Sent: Nov 06, 2022 06:09 AM
From: Scott Skalny
Subject: ClearPass Endpoint IP Address View

Is there a reason the IP address is not listed in either the Endpoint Profiler or Endpoints Configuration views?  I understand that they can change quickly, so may not always be up-to-date, but most of my IPs change infrequently, and I'm looking for a view that I can breakdown by device type/IP.

Thanks!
Scott