Security

 View Only
last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass services transition

This thread has been viewed 12 times

  • 1.  Clearpass services transition

    Posted Jan 24, 2023 08:42 AM

    Hello 

    I would need some advice / help on a Clearpass that I deployed in a customer

    The usecases are:

    802.1X Wired authentication on domain machines with EAP-TLS

    802.1X Wired MSCHAPV2 authentication (printer and phone)

    Profiling MAC

    MAC authentication with a static list

     

    I created 4 services, one per usecase

    The first two usecases work correctly

    The last two I could not differentiate the 2 services

     

    I don't know how to do the transition between my MAC profiling  usecase and MAC authentication with a static list

     

    when profiling fails, none of the conditions meet so I want to switch to the MAC authentication with a static list usecase.

     

    Today in my profilng services I added an authentication with a static list at the end of my rules and it works

     

    Someone can help me ?



  • 2.  RE: Clearpass services transition
    Best Answer

    Posted Jan 24, 2023 09:18 AM
    Why make multiple services for this at all?  I would make one Service for 802.1X and one service for MAB.  Within each, create necessary roles and enforcement profiles/policies to accomplish what you want.
    Original Message


  • 3.  RE: Clearpass services transition

    Posted Jan 25, 2023 05:55 AM
    Hi, thanks for your reply
    that's what i thought i was doing and what i did :)
    Original Message