Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

ClearPass EAP-TLS 1.2 support

This thread has been viewed 13 times

  • 1.  ClearPass EAP-TLS 1.2 support

    Posted Feb 23, 2015 06:29 PM

    Does ClearPass support TLS 1.2 for EAP? 

     

    If so how do you enable it? 

     

    I have updated by Windows clients to allow negotiation of TLS 1.2 but CPPM still sends back server hello with 1.0.  (6.4.x)

     

    Scott

     

     



  • 2.  RE: ClearPass EAP-TLS 1.2 support
    Best Answer

    EMPLOYEE
    Posted Feb 24, 2015 01:45 AM
    Not today. There has not be a big call for it. I would file a feature request if its something you must have.


  • 3.  RE: ClearPass EAP-TLS 1.2 support

    Posted Feb 24, 2015 04:27 PM
    Thanks Troy, will do.


  • 4.  RE: ClearPass EAP-TLS 1.2 support
    Best Answer

    Posted Mar 03, 2015 05:05 PM
    Hi All, TAC has confirmed that support for TLS version 1.2 is added in CPPM version 6.5.1. The reference bug/feature request number is # 28012.


  • 5.  RE: ClearPass EAP-TLS 1.2 support

    EMPLOYEE
    Posted Jun 24, 2015 10:08 AM

    Was having a similar issue. Confirmed with TAC that TLS 1.2 is NOT supported in 6.5.1 but is in 6.5.2 which is due out shortly.



  • 6.  RE: ClearPass EAP-TLS 1.2 support

    EMPLOYEE
    Posted Jun 27, 2015 11:11 AM

    6.5.2

    ClearPass now supports TLS version 1.2 in addition to 1.0 and 1.1 in TLS-based EAP methods. (#28012)



  • 7.  RE: ClearPass EAP-TLS 1.2 support

    Posted May 27, 2016 01:30 PM

    Hi Tim,

     

    If the client supports all three EAP-TLS versions, which one is going to used? Does ClearPass enforece the highest possible?

     

    Thanks,