Security

Reply
Occasional Contributor II

ClearPass and AD Synchronization (Cache Timeout)

Is there any disadvantage or negative effect if I will lessen the Cache Timeout to 180sec (3mins)?

 

ClearPass does not sync with AD in real-time every time I change something on AD.

 

Thank you for the help.

Guru Elite

Re: ClearPass and AD Synchronization (Cache Timeout)

ClearPass does not sync any data. It simply caches authorization data from previous authentications. I would not recommend going below 5 minutes in a busy environment.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: ClearPass and AD Synchronization (Cache Timeout)

Hi. Thank you for the information. How then I could update the ClearPass in real-time every time there is changes on the AD? Thank you.

Guru Elite

Re: ClearPass and AD Synchronization (Cache Timeout)

Are that many changes really occuring in AD? That's not very common.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: ClearPass and AD Synchronization (Cache Timeout)

They have a AD policy that every month users should change password.

Guru Elite

Re: ClearPass and AD Synchronization (Cache Timeout)

Passwords have nothing to do with authorization cache. Passwords are directly validated every time.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: ClearPass and AD Synchronization (Cache Timeout)

When user change password, it will disconnect from wlan. It will only connect after hours.

Guru Elite

Re: ClearPass and AD Synchronization (Cache Timeout)

You should work with Aruba TAC and/or your partner. There could be many reasons.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: