Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Authentication Sources Behavior

This thread has been viewed 3 times

  • 1.  Authentication Sources Behavior

    Posted Sep 27, 2017 03:59 PM

    I'm fairly new to ClearPass recently migrating to it from Cisco ACS. I feel like I have a decent grasp of the platform, but I'm hitting some road blocks as part of the migration and I'm hoping this is a simple question.

     

    When a rejection is received from an authentication source in a service, will ClearPass move onto the next authentication source in the list or will it terminate the entire auth session after receiving the reject?

     



  • 2.  RE: Authentication Sources Behavior

    Posted Sep 27, 2017 04:00 PM
    The authentication request will only ever hit one service. It'll be the first one that matches it (top down).


  • 3.  RE: Authentication Sources Behavior
    Best Answer

    EMPLOYEE
    Posted Sep 27, 2017 04:01 PM

    No. An authentication failure is an authentication failure and results in a REJECT. The authentication source ordering is for user lookup. If the user is found, it will perform authentication.



  • 4.  RE: Authentication Sources Behavior

    Posted Sep 27, 2017 05:54 PM
    Yeah, what Tim said. I misread the question and answered regarding services! Doh!