04-03-2013 07:57 AM
I created a VirtualController for a group of IAPs. I can get to the VC and see my cluster of IAPs to manage through the assigned APs. I added the VC IP into ClearPass under Configuration->Network->Devices. I then created the radius servers on the IAP using the same shared secret and ensuring the correct IPs were used. When I try to connect to a SSID that requires radius auth through CP it fails and doesn’t hit CPPM.
My next test was to take the IP of the AP and NOT the IP of the VC and add it to ClearPass. Once I did that and removed the VC IP for CPPM everything worked.
Can clearpass use the VC IP to perform radius authentications?
Solved! Go to Solution.
04-03-2013 08:09 AM
You need to enable Dynamic Radius Proxy so it always used the VC ip address.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
04-03-2013 08:13 AM - edited 04-03-2013 08:14 AM
EDIT: cjoseph beat me to it........
You need to enable Dynamic RADIUS Proxy in the Settings:
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX