Security

last person joined: 14 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Change IP Address of RADIUS Clearpass Server

This thread has been viewed 5 times

  • 1.  Change IP Address of RADIUS Clearpass Server

    Posted Oct 09, 2015 09:23 AM

    Hello, we have two Aruba 7210 controllers in a master-local setup and a Clearpass box acting as the RADIUS server for our WPA/WPA2 enterprise SSID.  Users can sign on with their AD credentials.  I'd like to change both the data and mgmt IP of our Clearpass/RADIUS server but make no other changes (not changing the cert, not changing any other settings other than pointing the 7210 controllers to the new RADIUS server IP).  The new Clearpass IPs are in the same subnet(s).  Just curious if this change will affect my wifi clients in any way?  Will they be re-prompted for a new cert or anything like that?  Thanks.  I just don't want to be blindsided by some unforeseen issue.


    #7210


  • 2.  RE: Change IP Address of RADIUS Clearpass Server

    EMPLOYEE
    Posted Oct 09, 2015 09:29 AM
    You can just change the IPs on both ClearPass and the controller. Just make sure any firewall rules in the network reflect the changes. 


  • 3.  RE: Change IP Address of RADIUS Clearpass Server
    Best Answer

    EMPLOYEE
    Posted Oct 09, 2015 09:30 AM
    802.1x does not depend on the IP address of the 802.1x server UNLESS you have the IP address of your radius server specified in the validate server certificate portion of your client configuration.


  • 4.  RE: Change IP Address of RADIUS Clearpass Server

    Posted Oct 09, 2015 09:37 AM

    Thank you, as always, Colin & cappalli.  

    After changing both the data and mgmt IPs to different IPs in the same subnet it appears wifi clients can still connect without issue or re-prompt.  Thanks again.