Security

Reply
Frequent Contributor I
Posts: 75
Registered: ‎09-08-2015

ClearPass RADIUS Accounting - Wired 802.1x

 

Trying to get the Framed-IP-Address sent by ClearPass to a RADIUS accounting proxy target for a Wired 802.1x policy but doesnt seem to be working.

 

Using an HP Comware 5 switch as NAS which is configured for RADIUS.

 

 

 

1.png

 

Same thing is working for a wireless policy, where Framed-IP can be seen in the RADIUS accounting logs.

 

Anyone got this working?

Guru Elite
Posts: 7,847
Registered: ‎09-08-2010

Re: ClearPass RADIUS Accounting - Wired 802.1x

Be sure you have DHCP snooping enabled on the switch.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Frequent Contributor I
Posts: 75
Registered: ‎09-08-2015

Re: ClearPass RADIUS Accounting - Wired 802.1x

Perfect! That did it!

 

For posterity - to enable on a comware 5 device acting as an edge switch:

 

[SWITCH] dhcp-snooping

[SWITCH] interface <uplink to L3 switch / DHCP server port>

[SWITCH] dhcp-snooping trust

 

Verify with 

 

[SWITCH] display dhcp-snooping 

Search Airheads
Showing results for 
Search instead for 
Did you mean: