Security

hi all,

I am concerned about Clear Pass's profiling, how can I profile devices without an IP helper as those endpoints will have static IPs not dynamic ?

I hope this helps:  https://www.arubanetworks.com/techdocs/ClearPass/6.12/PolicyManager/Content/CPPM_UserGuide/PolicyProfile/Collectors.htm

hi all,

I am concerned about Clear Pass's profiling, how can I profile devices without an IP helper as those endpoints will have static IPs not dynamic ?

thank you i tried the snmp way but still not getting all the info I need like device category and os, etc... I even changed the SNMP options in the server configuration and made the poll trigger for 10 minutes but still the endpoints don't update.

the accounting is working well between switch and cppm but the only issue I have now that profiling static devices.

I hope this helps:  https://www.arubanetworks.com/techdocs/ClearPass/6.12/PolicyManager/Content/CPPM_UserGuide/PolicyProfile/Collectors.htm

hi all,

I am concerned about Clear Pass's profiling, how can I profile devices without an IP helper as those endpoints will have static IPs not dynamic ?

I am still learning myself, but in my experience. 90% of valuable profiling information comes from DHCP with the helpers. I doing SNMP "Network Scans" in tandem with NMAP "Subnet Scans" with the SNMP scans able to read the ARP table may tie the Static Addresses to the clients for even better profiling. But being able to Fill out the Device Fingerprints effectively is Best with the DHCP Helpers. There may be significant Fingerprint Rule generation required for your use case of static IP devices. 

All of this is said with the hopeful correction by someone smarter than me. But Static IP devices have always been a bane for me. 

thank you i tried the snmp way but still not getting all the info I need like device category and os, etc... I even changed the SNMP options in the server configuration and made the poll trigger for 10 minutes but still the endpoints don't update.

the accounting is working well between switch and cppm but the only issue I have now that profiling static devices.

I hope this helps:  https://www.arubanetworks.com/techdocs/ClearPass/6.12/PolicyManager/Content/CPPM_UserGuide/PolicyProfile/Collectors.htm

hi all,

I am concerned about Clear Pass's profiling, how can I profile devices without an IP helper as those endpoints will have static IPs not dynamic ?

hi all,

I am concerned about Clear Pass's profiling, how can I profile devices without an IP helper as those endpoints will have static IPs not dynamic ?