As there seems no response to this question, it may be best to open a TAC case. With custom configuration like this, you would need to understand and check step by step what information is present, and what is not, from there find out the missing link to solve it. If the time source does not show up, it can be configuration error, or the attribute not being used in a role mapping or enforcement, or in your role mapping using a first-match instead of evaluate all causing the attribute not to be used. And there are many other possible cases which are much easier to find and solve with interactive access to the ClearPass server.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Mar 25, 2026 10:22 AM
From: Karthikeyan k
Subject: Clearpass OnGuard agent bounce whenever the posture token changes
I was trying to complete one testing for ClearPass. So, OnGuard bounce should happen only when the posture token changes and only if the user comes to the office in the morning. I followed this link to achieve that: https://support.hpe.com/hpesc/public/docDisplay?docId=sf000094532en_us&docLocale=en_US&page=index.html, but the time-based authorization is not working.
If someone has any ideas to solve this issue, that would be really helpful.
-------------------------------------------