Security

 View Only

  • 1.  CPPM - Palo Alto Integration

    Posted Jan 29, 2026 08:33 AM

    Currently we have an existing clearpass deployment running 6.12.5.
    Now, the we want to add branch office with Palo Alto integration using endpoint context server.
    We see sometimes the Palo Alto receive the posture result, but sometimes Palo Alto didn't receive the posture result from onguard.

    Sometimes the palo alto receive the posture data

    image

    Sometimes the palo alto didn't receive the posture data:

    image

    Enforcement Profiles

    image


    I assign the enforcement profiles in service for radius

    Is there anyone already successfully integrate clearpass and palo alto?



    -------------------------------------------


  • 2.  RE: CPPM - Palo Alto Integration

    Posted Jan 31, 2026 11:23 PM

    You must have the role mapping incorrect? Looks like it is sending the device/user role. I would check one of the failed devices and see what the access tracker entry for the device says for Roles.



    ------------------------------
    Dustin Burns

    Lead Mobility Engineer @Worldcom Exchange, Inc.

    ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2022-2023
    If my post was useful accept solution and/or give kudos
    ------------------------------



Related Content