Security

 View Only
Back to discussions
Expand all | Collapse all

How to pull endpoint data from external Asset Inventory to ClearPass Endpoint Repository

This thread has been viewed 11 times

  • 1.  How to pull endpoint data from external Asset Inventory to ClearPass Endpoint Repository

    Posted May 13, 2025 04:33 AM

    Hello.

    We have all our assets stores in centralized asset inventory database which contains information like (device name, IP address, mac address, device type/model number, manufacturer, etc.). Our requirement is to pull the endpoint data (non-802.1x capable devices) without having to manual add them with their attributes.

    Is there any way to achieve this? Can we use API?

    This will help us in device profiling since we don't have DHCP environment.

    Thanks.!



  • 2.  RE: How to pull endpoint data from external Asset Inventory to ClearPass Endpoint Repository
    Best Answer

    Posted May 13, 2025 06:26 AM

    You can add a SQL server as a authentication source in ClearPass to fetch the MAC address from the database and the corresponding attributes.

    PostgreSQL, Oracle 11g, MariaDB and MSSQL are supported databases.

    Another option is to create a generic HTTP Endpoint context server, but this may be more complex.



    ------------------------------
    Best Regards
    Jonas Hammarbäck
    MVP Guru, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security
    Aranya AB
    If you find my answer useful, consider giving kudos and/or mark as solution
    ------------------------------

    Original Message


  • 3.  RE: How to pull endpoint data from external Asset Inventory to ClearPass Endpoint Repository

    Posted May 13, 2025 09:25 AM

    A third option would be to use an external tooling (or your Asset Management solution if it supports it) to synchronize your assets database (attributes) into the ClearPass Endpoint Database through API calls. SQL/HTTP Endpoint is a live lookup at the time of authentication, API to ClearPass is replicated data, so data is already in ClearPass. Both have pros/cons.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------

    Original Message


Related Content