Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

802.1x Certificate issues

This thread has been viewed 3 times

  • 1.  802.1x Certificate issues

    Posted Nov 26, 2015 03:26 AM

    I am facing an issue while authenticating AD users via aruba controller.iI am facing following error

    Certificate error.png

    Error No on NPS Eventviewer is 6237 with reason 16

     

     

     

     



  • 2.  RE: 802.1x Certificate issues

    EMPLOYEE
    Posted Nov 26, 2015 07:42 AM
    That is a normal part of connecting doe the first time. Simply click Connect.

    Sent from Nine


  • 3.  RE: 802.1x Certificate issues
    Best Answer

    EMPLOYEE
    Posted Nov 26, 2015 07:45 AM

    For 802.1x authentication you need an SSL Server certificate on your RADIUS server; and that certificate must be trusted (and configured) by your client.

     

    You should put the certificate on most cases on the RADIUS server, NPS in your case, however the controller can present a certificate to the client as well. This is called 'Termination' in your 802.1x Authentication profile. Your screenshot shows that the controller terminated the RADIUS connection with its built-in certificate. If you did setup your AD with a certificate, you may need to switch off Termination on the 802.1x authentication profile.

     

    If you need to setup NPS, this post: http://community.arubanetworks.com/t5/Community-Tribal-Knowledge-Base/Step-by-Step-How-to-Configure-Microsoft-NPS-2008-Radius-Server/ta-p/80672 may help in setting up NPS correctly.

     

    Herman