Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Clearpass rlm_mschap: detach

This thread has been viewed 0 times

  • 1.  Clearpass rlm_mschap: detach

    Posted Nov 29, 2015 10:23 PM

    Hi Guys,

     

    i'm having an issue with one of my clearpass in my customer's site.

    clearpass is authenticating PEAP-MsChapv2 with data source from AD.

    everythhing used to be working fine but lately sometime some users always failed to authenticate with error msg: (i use syslog debug)

    [main] INFO  RadiusServer.Radius - rlm_mschap: detac

    [main] INFO  RadiusServer.Radius - rlm_sql (auth_local_db): Driver rlm_sql_unixodbc (module rlm_sql_unixodbc) loaded and linked
    [main] INFO  RadiusServer.Radius - rlm_sql (auth_local_db): Database to connect to appuser@localhost:/tipsd

     

    i'm guessing the error msg appears as if the clearpass is un-joined from the AD but it actually already and still is..

    the only fix i got is by making the clerpass to leave the AD and rejoin.

    this has been done several times.

     

    any pointer what should be done to avoid this issue?

     

    Ricky

     



  • 2.  RE: Clearpass rlm_mschap: detach

    Posted Dec 26, 2015 07:23 AM

    are you basing this only on: [main] INFO  RadiusServer.Radius - rlm_mschap: detac  ?

     

    i would contact support, they can probably much better pick up on issues if they get the full debug logs.