Dell PowerConnect W Clearpass 100 Software Palo Alto Networks User-ID Services
Dell PowerConnect W Clearpass 100 Software Manual
 |
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Dell PowerConnect W Clearpass 100 Software manual content summary:
- Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 1
Palo Alto Networks User-ID Services Unified Visitor Management - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 2
Source Code Certain Aruba products include Open Source software code developed by third parties, including software code subject to the GNU General Public parts/labor. For more information, refer to the ARUBACARE SERVICE AND SUPPORT TERMS AND CONDITIONS. Altering this device (such as painting - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 3
Configuring the Palo Alto Networks User-ID Service 9 Check Palo Alto Networks Version and Setup 10 Configuring User-ID Agent Definition 11 Enable Zone Based User Identification 12 Configuring User-ID Agent Software 12 5 Verify Integration...15 Create Test Account in Amigopod 15 Login to Guest - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 4
guide for administrators intending to deploy Palo Alto Networks User-ID Services on the Amigopod Visitor Management Appliance. Step-by-step instructions you read this document, it is best to consider it as a guide to developing your own understanding of the network design topics covered, and as a - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 5
2 About Palo Alto Networks User-ID Services Overview Palo Alto Networks have developed a range of Next Generation firewalls that moved to an Internet and web-centric model. Compounding the visibility problem is an increasingly mobile enterprise, where employees access the network from virtually - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 6
Palo Alto Networks User-ID Services Architecture Amigopod is typically deployed in conjunction with a Wired or Wireless Access Controller to provide a removed through the tight integration with Amigopod's user authentication process. 6| Palo Alto Networks User-ID Services Amigopod |Technical Note - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 7
is installed on a domain workstation or server and uses a domain account that has access to the Active Directory tree. For the Amigopod integration the local network. Once the Palo Alto Networks is configured to support the User-ID service as detailed in the next section, an outbound connection will - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 8
download and install updated plugins. It is assumed that the configuration steps required to integrate the chosen Wired or Wireless Access Controller have been completed, tested of detailed Integration Guides with the leading manufacturers. Accessing Palo Alto Networks User-ID Services Log in to - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 9
To start the XML API service, click the Enable checkbox to enable the plugin. Amigopod leverages its advanced RADIUS authentication engine to allow the Palo Alto Wireless Access Controller must be configured correctly to support RADIUS accounting otherwise the Palo Alto Networks firewall will not be - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 10
following software releases in order to support the XML API for the User-ID integration: • Firewall Software Version 3.1.0 or later • User-ID Agent Software Version 3.1.0 or later In the test environment scope for this document. 10| Palo Alto Networks User-ID Services Amigopod |Technical Note - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 11
the IP Address details of the Windows Host you have installed the Palo Alto Networks User-ID Agent software. In our test environment the Windows host has an IP Address of 10.0.20.53. A port must also be defined on the Windows host. Amigopod |Technical Note Palo Alto Networks User-ID Services|11 - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 12
with pass through. In our test environment all traffic is passing software is already installed on the Windows host discussed in the previous sections. It is a basic windows installer so no additional coverage of the install process will be included here. 12| Palo Alto Networks User-ID Services - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 13
. The following start up screen will be displayed: Click the Configure option in the left navigation pane to complete the configuration of the Agent software. From the Configure screen the Device Listening Port must be configured to match that of the setting on the Palo Alto Networks firewall in the - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 14
5006 as this is what the Amigopod default setting is in the Palo Alto Networks User-ID Services plugin. Now returning to main screen by clicking on the User-ID Agent option at the complete and your deployment is now ready for testing. 14| Palo Alto Networks User-ID Services Amigopod |Technical Note - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 15
option, enter the details for a new test account and click the Create Guest button to save the account to the Amigopod database. Login to Guest be seen from the screen shot below from the Aruba User Interface, the test wireless client (10.0.20.60) has successfully associated with the Amigopod SSID - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 16
automatically redirect to the Amigopod Web Login page. Login using the test account created in the previous step. Once you have been successfully interface by going to the RADIUS Services > Server Control option and reviewing the RADIUS log for an entry matching your test user. You can also go to - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 17
User-ID plugin will have executed an XML API call to the User-ID Agent software to inform the Palo Alto Networks of the new IP Address to User mapping. Returning navigation pane we can verify the test user details have been successfully received. Amigopod |Technical Note Palo Alto Networks User- - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 18
analysis. You should now see the From User column successfully populated with the user identity of the test user created in Amigopod. One of the most powerful sections of the Palo Alto Networks user the Amigopod API integration. 18| Palo Alto Networks User-ID Services Amigopod |Technical Note - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 19
traffic from the IP address in question (10.0.20.60) is no longer associated with a particular user. Amigopod |Technical Note Palo Alto Networks User-ID Services|19 - Dell PowerConnect W Clearpass 100 Software | Palo Alto Networks User-ID Services - Page 20
or free wireless accounts support for authenticating SSL VPN users created on Amigopod and using radius return attributes to apply the appropriate policy. Similarly, this technique can be used for role based administration access for firewall administrators. 20| Palo Alto Networks User-ID Services
-
1 -
2 -
3 -
4 -
5 -
6 -
7 -
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
 |
 |
Palo Alto Networks
User-ID Services
Unified Visitor Management