l Admin/Operator access security via CAC (Common Access Card) and TLS (Transport Layer Security)
certificates
Framework and Protocol Support
l RADIUS, RADIUS CoA, TACACS+, Web authentication, and SAML v2.0
l EAP-FAST (EAP-MSCHAPv2, EAP-GTC, EAP-TLS)
l PEAP (EAP-MSCHAPv2, EAP-GTC, EAP-TLS, EAP-PEAP-Public)
l EAP-TTLS (EAP-MSCHAPv2, EAP-GTC, EAP- TLS, EAP-MD5, PAP, CHAP)
l EAP-TLS
l PAP, CHAP, MSCHAPv1, MSCHAPv2, and EAP-MD5
l Wireless and wired 802.1X and VPN
l OAuth .02
l Microsoft NAP and NAC
l Active Directory machine authentication
l Online Certificate Status Protocol (OCSP)
l SNMP generic MIB, SNMP private MIB
l Common Event Format (CEF), Log Event Extended Format (LEEF)
l Simple Certificate Enrollment Protocol (SCEP)
l Enrollment over Secure Transport (EST)
Supported Identity Stores
l Microsoft Active Directory
l Kerberos
l Any LDAP-compliant directory
l Microsoft SQL, PostgreSQL, MariaDB, and Oracle 11g ODBC-compliant SQL server
l Built-in SQL store
l Built-in static-hosts list
l Token servers
l Built-in SQL store, static hosts list
l Microsoft Azure Active Directory (via SAML and OAuth 2.0)
l Google G Suite (via SAML and OAuth 2.0)
IPv6 Support
l Web and CLI based management
l IPv6 addressed authentication & authorization servers
l IPv6 accounting proxy
l IPv6 addressed endpoint context servers
l Syslog, DNS, NTP, IPsec IPv6 targets
l IPv6 Virtual IP for high availability
l HTTP Proxy
l Ingress Event Engine Syslog sources
Profiling Methods
l Active: Nmap, WMI, SSH, SNMP
5 ClearPass 6.7 Getting Started Guide
To Next Page
Loading...
Need help?
General
