Aruba ClearPass
  • 2 minutes to read
  • Print
  • Share
  • Dark
    Light

Aruba ClearPass

  • Print
  • Share
  • Dark
    Light

Aruba ClearPass is a network access control (NAC) solution that allows enterprises to identify devices, enforce policies, and remediate threats.

Parameters

  1. Aruba ClearPass Domain (required) - Use your Aruba ClearPass domain.
  2. Client ID and Client Secret (required) - The client ID and client secret you have created to use the Aruba ClearPass API. For more details, see the Create an Aruba ClearPass RestAPI Client section below.
  3. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Aruba ClearPass Domain. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Aruba ClearPass Domain will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Aruba ClearPass Domain will not be verified against the CA database inside of Axonius.
  4. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Aruba ClearPass Domain.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Aruba ClearPass Domain.
    • If not supplied, Axonius will connect directly to the value supplied in Aruba ClearPass Domain.
  5. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

image.png

Advanced Settings

  1. Get extended agent information (required, default: True) - Choose whether to get extended agent information.
    • If enabled, all connections for this adapter will fetch extended information from the ClearPass agent.
    • If disabled, all connections for this adapter will not fetch extended information from the ClearPass agent.
  2. Do not fetch devices without 'Last Seen' (required, default: False) - Choose whether to fetch devices without Last Seen.
    • If enabled, all connections for this adapter will not fetch devices if they do not have a Last Seen.
    • If disabled, all connections for this adapter will fetch devices even if they do not have a Last Seen.
  3. Results per page (required, default: 100) - Set the number of results per page received for a given request, to gain better control on the performance of all connections of for this adapter.

image.png

Note

For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.

Create an Aruba ClearPass RestAPI Client

You must create a client to use the Aruba ClearPass API. Consider this client as the App definition on Aruba ClearPass. Without this client, access to the API is not possible.

To create the client:

  1. Open Aruba ClearPass Guest and go to Administration –> API Services –> API Clients and click the Create API Client button.
  2. Provide the following information:
    • Client ID - Creates the connection between the user and the API.
    • Operator Profile - Includes the API Services access rights. Axonius required read-only permissions.
    • Grant Type - Set the OAuth2 authentication method as 'Client Credentials'.
    • Public Client - Make sure this option is unselected.
NOTE

Read Only Administrator Operator Profile doesnt by default give API permissions.

  1. Save changes and copy the client ID and the client secret.
Was this article helpful?