Security

Reply
Regular Contributor I
Posts: 159
Registered: ‎03-03-2011

CPPM not processing Cisco DACL

I'm having an issue with CPPM 6.3.1 and Cisco 3750 IOS 15.0.2(se4). The DACL gets sent by CPPM but then it fails to process the request and the DACL is not applied. This was working in 12.2 but COA was not, hence why the upgrade to 15.0.2 was performed (per Aruba SE)- now COA works but DACL doesn't. Any thoughts?

 

2014-05-28 16_17_48-ClearPass Policy Manager - Aruba Networks.png

 

 

Regards,

Josh
___________
ACMP, ACCP
Aruba
Posts: 1,377
Registered: ‎12-12-2011

Re: CPPM not processing Cisco DACL

Have you opened a case with Cisco?  It appears that in each IOS code version, CoA or dACLs work so one can make a careful assumption that the CPPM config is sound.  Was there anythign Cisco changed with the code upgrade for RADIUS authentication syntax?

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
Regular Contributor I
Posts: 159
Registered: ‎03-03-2011

Re: CPPM not processing Cisco DACL

I have not Seth. However, I just pasted the same exact config back into the switch (copy and paste from my config doc) and now it works with no other changes. Odd but now working. 

Regards,

Josh
___________
ACMP, ACCP
Aruba
Posts: 1,377
Registered: ‎12-12-2011

Re: CPPM not processing Cisco DACL

Wow - that's weird...thanks for getting back to us though!

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
Regular Contributor I
Posts: 159
Registered: ‎03-03-2011

Re: CPPM not processing Cisco DACL

The IOS was rolled back from 15.0.3 to 15.0.2 so something must have changed but I have not found out exactly what yet. 

Regards,

Josh
___________
ACMP, ACCP
Search Airheads
Showing results for 
Search instead for 
Did you mean: