09-01-2016 08:40 AM
I'm attempting to integrate my Juniper SRX240 with CPPM 6.6. I have the devices talking to each other, but it seems that the context push from CPPM to SRX is somewhat hit and miss. I've been working off of an Aruba provided Tech note for Juniper SRX and followed ( I believe ) the directions. The issue I see is that when authenticating to Clearpass, the user info is not always pushed to the SRX. ( There is no authentication-table entry. ). When initiating a pull from SRX to Clearpass, it returns a result set with the state as pending. Has anyone seen this?
09-01-2016 11:35 AM - edited 09-01-2016 11:36 AM
This one turns out to be user error. If the CPPM timestamp is too far off from the SRX unreliable results occur.
With a timestamp in the past on the CPPM, authenticated users will eventually show up in the SRX user table, but it could be hours before that happens. Having timestamps in sync is important here...