Dell Powerconnect W-ClearPass Hardware Appliances W-ClearPass Policy Model
Dell Powerconnect W-ClearPass Hardware Appliances Manual
View all Dell Powerconnect W-ClearPass Hardware Appliances manuals
Add to My Manuals
Save this manual to your list of manuals |
Dell Powerconnect W-ClearPass Hardware Appliances manual content summary:
- Dell Powerconnect W-ClearPass Hardware Appliances | W-ClearPass Policy Model - Page 1
model allows it to broker security functions across a range of existing network infrastructure, identity stores, health/posture services and client technologies within the Enterprise. Services Paradigm Services are the highest level element in the Policy Manager policy model. They have two purposes - Dell Powerconnect W-ClearPass Hardware Appliances | W-ClearPass Policy Model - Page 2
Manager Flow of Control Table 1: Policy Manager Service Components Component Service: component ratio A - Authentication Method Zero or more per service Description EAP or non-EAP method for client authentication. Policy Manager supports four broad classes of authentication methods: l EAP - Dell Powerconnect W-ClearPass Hardware Appliances | W-ClearPass Policy Model - Page 3
repository against which Policy Manager verifies identity. It supports these Authentication Source types: l Microsoft Active Directory l and LDAP compliant directory l RSA or other RADIUS-based token servers l SQL database, including the local user store. l Static Host Lists, in the case of MAC - Dell Powerconnect W-ClearPass Hardware Appliances | W-ClearPass Policy Model - Page 4
Component G - Enforcement Policy H - Enforcement Profile Service: component ratio One per service (mandatory) One or more per service Description installed agent, or which cannot respond to Policy Manager interactions. Audit servers typically operate in lieu of authentication methods,
0511287-01 | Mar 2013
1
Dell Networking W-ClearPass Policy Model 6.0
An Introduction
From the point of view of a network device or other entities that need authentication services, Policy Manager
appears as a RADIUS, TACACS+ or Web Authentication server; however, its rich and extensible policy model
allows it to broker security functions across a range of existing network infrastructure, identity stores, health/posture
services and client technologies within the Enterprise.
Services Paradigm
Services
are the highest level element in the Policy Manager policy model. They have two purposes:
l
Unique
Categorization Rules
(per Service) enable Policy Manager to test Access Requests ("Requests") against
available Services to provide robust differentiation of requests by access method, location, or other network
vendor-specific attributes.
NOTE: Policy Manager ships configured with a number of basic Service types. You can flesh out these Service types, copy them for
use as templates, import other Service types from another implementation (from which you have previously exported them), or
develop new Services from scratch.
l
By wrapping a specific set of
Policy Components
, a Service can coordinate the flow of a request, from
authentication, to role and health evaluation, to determination of enforcement parameters for network access.
Figure 1
:
Dell
Networking
W-
ClearPass
Policy
Manager
Flow
of
Control
and
Table 1
:
Policy
Manager
Service
Components
illustrate and describe the basic Policy Manager flow of control and its underlying architecture.