Security

Reply
Contributor II

802.1x L2 Authentication Termination issue (with Clearpass)

Hi All,

 

I have an issue, i integrate clearpass with my controller for 802.1x authentication. The problem is under L2 default 802.1x Authentication profile when i enable termination and enable EAP-Termination Type to eap-peap then i am able to authenticate the client but once i used my own created profile having no termination enable then i am not able to authenticate the client and i received the below error in clearpass

 

Alerts for this Request  

RADIUSCannot select appropriate authentication method

 and also on Client device i received an error that creditails are wrong.

Guru Elite

Re: 802.1x L2 Authentication Termination issue (with Clearpass)

If you have ClearPass, why are you terminating on the controller?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II

Re: 802.1x L2 Authentication Termination issue (with Clearpass)

Thanks cappalli,

 

Thats why i confused, i am going to authenticated the client from the clearpass not from the internel database. As per my information if we want to authenticate the clients from internal database then in that case we will enable termination on the controller. But when i disable the termination then the user device stuck in connecting and not proceediong further. Below is the snapshot from the wireshark for your information.packet Capture.JPG

Guru Elite

Re: 802.1x L2 Authentication Termination issue (with Clearpass)

What is shown in access tracker?
Do you have a valid EAP server certificate installed in Clearpass?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II

Re: 802.1x L2 Authentication Termination issue (with Clearpass)

Thanks Cappalli,

 

Actually i am new with clearpass, i checked from Access Tracker i didn't found any thing in Access Tracker. Regarding "Vaild EAP server certificate installed in Clearpass", how can i verify it please if you can tell me it will appriciated. 

Guru Elite

Re: 802.1x L2 Authentication Termination issue (with Clearpass)

Look to see if there's anything in Event Viewer.

 

For the certificate, did you acquire a certificate for use as the EAP server certificate?

 

Have you reached out to your Aruba ClearPass partner?


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: