Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CPPM with EAP-FAST

This thread has been viewed 2 times

  • 1.  CPPM with EAP-FAST

    Posted Mar 11, 2018 02:59 PM

    Hi,

     

    We are trying to configure the CPPM for 802.1X auth for wired cleints. All the PC/Laptops are using the cisco any connect NAM where in a profile is configured to connec to the LAN. Screen shot shoen below.MOBI-NAM.png

     

    There is no other settings done on this.The setting is being used across the offices globally where in cisco ISE is the radius server. But our location is using Aruba CPPM. We would like the CPPM also use the same profile to connect to LAN.We did the configuration and ended up in the below error.

     

    CPPM-ER.png

     

     

    I would like to know whether this will work with CPPM as mentioned above.

     

    Appreciate your valuable inputs...

     

    Faiz

     



  • 2.  RE: CPPM with EAP-FAST

    EMPLOYEE
    Posted Mar 11, 2018 03:01 PM
    Is this EAP-FASTv1 or EAP-FASTv2?


  • 3.  RE: CPPM with EAP-FAST

    Posted Mar 11, 2018 03:16 PM

    Hi,

     

    I am not sure of the EAP-FAST version used here. I didnt see anything specific related to the version.

     

    Faiz



  • 4.  RE: CPPM with EAP-FAST

    EMPLOYEE
    Posted Mar 11, 2018 03:28 PM
    Please look in ISE. EAP-FASTv2 is Cisco proprietary.


  • 5.  RE: CPPM with EAP-FAST

    Posted Mar 13, 2018 08:05 AM

    Hi Tim,

     

    It looks it uses version 1.

     

    I have go the below wireshark output 

     

    EAP-FV.png



  • 6.  RE: CPPM with EAP-FAST

    EMPLOYEE
    Posted Mar 13, 2018 08:22 AM
    Please open a TAC case.