



-
Using Static Host List with ClearPass
There are use cases where you need to use a list of hosts (MAC addresses) to provide MAC auth with ClearPass which in most of the cases it is mainly for legacy devices. We’ll start with creating the list. Once you save it you see it as shown below. The static… Read more
-
ClearPass Enforcement Policy for Nested AD groups
This is a short tutorial using ClearPass enforcement policy to check if the user is member of nested or higher level AD group. We’ll explore two methods for it. There are many cases that the users are member of a sub group that are all part of a higher level group… Read more
-
Aruba Central Template configuration for VSF and Core Switches
Here are the templates that I used for VSF and the core switches in my previous post. Aruba Central VSF Template Here is the full template for your reference. This template can be used for a single switch or VSF stack of up to 4x members. hostname %_sys_hostname%allow-unsupported-transceiveruser admin group administrators… Read more
-
Aruba CX switch deployment with Aruba Central and Aruba CX App
The aim of this short guide is to use the CX App to configure two 6300 switches in VSF and then use Aruba Central to further configure and manage them along with dual 832X core switches in VSX formation.Our CX switches are using 10.05.0020 but the minimum version required to be… Read more
-
Device Profiles Configuration for CX switches
Here is a short technote to demonstrate “Device profile” feature for CX 6200/6300/6400 switches. Device profile was a popular feature in AOS-S switch like 2930F/M and the aim of the feature is to automatically discover the key devices that are connected to the switch port using LLDP/CDP and to enable automatic… Read more
-
NetEdit TACACS Authentication with ClearPass
The main aim of this short technical note is for easy/quick configuration and demo of TACACS authentication between NetEdit and ClearPass Policy Manager (CPPM). We assume that the ClearPass has already joined the AD domain as we’ll be using the AD user group to authenticate the TACACS users. Read more
