Configuring A Local Certificate Authority Eas - Aruba Networks PowerConnect W Clearpass 100 Software Deployment Manual

To configure the authorization method for a Proxy RADIUS external authentication server, see
Authorization for External Authentication

Configuring a Local Certificate Authority EAS

For Local Certificate Authority authentication servers, the following fields are displayed in the Edit
Authentication Server form.
1. In the Name field, enter a name to uniquely identify this server.
2. (Optional) You can use the Description field to include additional information.
3. (Optional) To enable RADIUS authentication for this server, mark the check box in the Enabled row.
4. In the Rank row, enter a number to specify the ranking order for this server. Authentication servers are
checked in order of increasing rank.
5. Under the Authorization heading, choose an authorization method from the Method drop-down list.
Method options available for Local Certificate Authority servers are:
No authorization - Authenticate only

Use the common name of the certificate to match a local user account

Assign a fixed user role (Contractor, Employee, or Guest)

Use PHP code to assign a user role

For information about these authorization methods, see
Authentication
The Test Authentication form for Local Certificate Authority servers includes EAP-TLS settings. For
information on testing a Local Certificate Authority authentication server, see
Authentication
For Local Certificate Authority authentication servers, the RADIUS Authentication Server form also
includes a link to the Extensible Authentication Protocol Configuration page, where you can manage EAP
configuration settings and view certificate information for the server. See
and Certificate
ClearPass Guest 3.9 | Deployment Guide
Servers."
Servers."
Management" in this chapter.
Servers."
"Configuring Authorization for External
"Configuring
"Testing External
"EAP and 802.1X Authentication
RADIUS Services | 169