Security

last person joined: 18 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Allowing Clearpass to update automatically?

This thread has been viewed 8 times

  • 1.  Allowing Clearpass to update automatically?

    Posted Jun 13, 2014 04:17 AM

    Hi,

     

    What ports should be open in order to let Clearpass to get the updates and patches automatically?

    I use version 6.3.2 and when try 'check status now' in 'Software update' section it says: connection timed out!

    The same happens when I try to activate live update with subscription ID.



  • 2.  RE: Allowing Clearpass to update automatically?

    EMPLOYEE


  • 3.  RE: Allowing Clearpass to update automatically?

    EMPLOYEE
    Posted Jun 13, 2014 04:25 AM
    ClearPass Internet Access requirements


    Question: What internet access does ClearPass require for normal operation and why?



    Answer: ClearPass requires access to the following URL for checking for updated plugins:

    http://clearpass.arubanetworks.com (legacy http://www.amigopod.com/webservice)

    This uses TCP ports 80 and 443. If an access control list will be created on a firewall to allow this traffic, please note that the IP address that clearpass.arubanetworks.com resolves to is subject to change. If you find that you are unable to get plugin updates with a valid subscription ID, then make sure this access is allowed.

    For Remote Assist feature in ClearPass 6.3, ClearPass needs to be able to open a TCP 443 connection to remoteassist.arubanetworks.com.