08-11-2016 03:32 AM
Team, I want to use ClearPass as a TACACS+ server integrated with AD, but I want ClearPass to be able to authenticate admins via TACACS (with AD as as identity source) even if there is no connection between ClearPass and AD (for example due to technical difficulties).
Is it possible?
Thanks in advance!
08-11-2016 05:59 AM
No, in order to authenticate against an authentication source, the authenticate server needs to be reachable.
You could create some backup local accounts inside ClearPass if necessary.
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP