About ClearPass Policy Manager

The ClearPass Policy Manager™ Access Management System provides a window into your network and covers all your access security requirements from a single platform. You get complete views of mobile devices and users and have total control over what they can access.

When using the Policy Manager WebUI, best practices is to perform all actions within a single browser tab. If you change configuration settings within multiple tabs, there is an increased chance of data loss and potential impact to network access. Similarly, only one network admin should be logged in to Policy Manager at any time to avoid potential data loss and synchronization issues.

If you are new to Policy Manager, refer to the following sections:

For a description of how to use the Dashboard, see Using the Policy Manager Dashboard.

For a list of common configuration tasks and pointers to information about how to perform each task, refer to Accessing Configuration Information.

If you are planning a new Policy Manager deployment, refer to the ClearPass Deployment Guide.

The Policy Manager Deployment Guide is organized in a way that presents the deployment and configuration sequences in the order in which Policy Manager deployment should take place, and makes the major deployment tasks easy to implement.

 

Periodic revisions to the Release Notes, Policy Manager User Guide, and Online Help are sometimes posted; however, some browsers might display a cached previous version. To ensure that you are viewing the latest version of the documentation, you may want to clear your browser’s download history and cached images and files.

With Policy Manager, IT can centrally manage network policies, automatically configure devices and distribute security certificates, admit guest users, assess device health, and even share information with third-party solutions—through a single pane of glass, on any network and without changing the current infrastructure.

The Policy Manager Access Management System provides a window into your network and covers all your access security requirements from a single platform. You get complete views of mobile devices and users and have total control over what they can access.

Policy Manager's key features are as follows:

Role-based, unified network access enforcement across multi-vendor wireless, wired and VPNVirtual Private Network. VPN enables secure access to a corporate network when located remotely. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security, and management policies of the private network. This is done by establishing a virtual point-to-point connection through the use of dedicated connections, encryption, or a combination of the two. networks

Intuitive policy configuration templates and visibility troubleshooting tools

Supports multiple authentication/authorization sources (AD, LDAPLightweight Directory Access Protocol. LDAP is a communication protocol that provides the ability to access and maintain distributed directory information services over a network., SQL dBDecibel. Unit of measure for sound or noise and is the difference or ratio between two signal levels.)

Self-service device onboardingThe process of preparing a device for use on an enterprise network, by creating the appropriate access credentials and setting up the network connection parameters. with built-in certificate authority (CACertificate Authority or Certification Authority. Entity in a public key infrastructure system that issues certificates to clients. A certificate signing request received by the CA is converted into a certificate when the CA adds a signature generated with a private key. See digital certificate.) for BYODBring Your Own Device. BYOD refers to the use of personal mobile devices within an enterprise network infrastructure.

Guest access with extensive customization, branding and sponsor-based approvals

Integration with key EMM/MDMMobile Device Management. MDM is an administrative software to manage, monitor, and secure mobile devices of the employees in a network. solutions for in-depth device assessments

Comprehensive integration with the Aruba 360 Security Exchange Program

Single sign-on (SSOSingle Sign-On. SSO is an access-control property that allows the users to log in once to access multiple related, but independent applications or systems to which they have privileges. The process authenticates the user across all allowed resources during their session, eliminating additional login prompts.) support works with Ping, and other identity management tools to improve user experience to SAMLSecurity Assertion Markup Language. SAML is an XML-based framework for communicating user authentication, entitlement, and attribute information. SAML enables single sign-on by allowing users to authenticate at an identity provider and then access service providers without additional authentication. 2.0-based applications

The online help for Policy Manager is updated periodically as new features become available. The table below describes these most recent updates.

Table 1: ClearPass Policy Manager 6.9 User Guide Revision History

Revision

Change Description

Revision Date

Revision 14 Updated with enhancements for Policy Manager 6.9.13 November 16, 2022
Revision 13 Updated with enhancements for Policy Manager 6.9.11 June 1, 2022
Revision 12 Updated with enhancements for Policy Manager 6.9.10 March 20, 2022
Revision 11 Updated with enhancements for Policy Manager 6.9.9 February 2, 2022
Revision 10 Updated with enhancements for Policy Manager 6.9.8 November 17, 2021
Revision 09 Updated with enhancements for Policy Manager 6.9.7 September 1, 2021
Revision 08 Updated with enhancements for Policy Manager 6.9.6 May 26, 2021
Revision 07 Updated with enhancements for Policy Manager 6.9.5 February 3, 2021
Revision 06 Updated with enhancements for Policy Manager 6.9.4 November 18, 2020
Revision 05 Updated with enhancements for Policy Manager 6.9.3 October 5, 2020
Revision 04 Updated with enhancements for Policy Manager 6.9.2 July 28,  2020
Revision 03 Updated with enhancements for Policy Manager 6.9.1 May 20, 2020
Revision 02 Updated to better describe expected behavior for the Search Scope setting used to query and find a user or machine record given a unique attribute for that record in LDAPLightweight Directory Access Protocol. LDAP is a communication protocol that provides the ability to access and maintain distributed directory information services over a network./Active DirectoryMicrosoft Active Directory. The directory server that stores information about a variety of things, such as organizations, sites, systems, users, shares, and other network objects or components. It also provides authentication and authorization mechanisms, and a framework within which related services can be deployed. May 4, 2020

Revision 01

Initial Policy Manager 6.9.0 release

February 12, 2020