Security

last person joined: 23 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Error trying to join AD domain - Clearpass

This thread has been viewed 74 times

  • 1.  Error trying to join AD domain - Clearpass

    Posted Sep 25, 2017 06:17 AM

    Hi all,

     

    I'm trying to join Policy Manager to an AD domain but I receive this error

     

    kinit succeeded but ads_sasl_spnego_gensec_bind(KRB5) failed for
    ldap/tdcesol.local with user[Administrator] realm[TDCESOL.LOCAL]: Unexpected information received
    Failed to join domain: failed to connect to AD: Unexpected
    information received

     

    Any idea what could it be happening?

     

    Thanks!

     

    Regards,

    Jorge



  • 2.  RE: Error trying to join AD domain - Clearpass
    Best Answer

    Posted Sep 25, 2017 07:45 AM

    Solved. Problems with Domain Controller name! ;)



  • 3.  RE: Error trying to join AD domain - Clearpass

    Posted Sep 25, 2017 12:35 PM

    Same Here. Thanks!

    I changed the Computer name to match my DNS entry, but I assume you could change the DNS entry to match the computer name on your Domain Controller.

     

    Example:

    My Domain Controller computer name was ad01.aruba-lab which did not work because my DNS entry was just ad01.arubalab.net

    The Join failed when those 2 did not match.  Since this is a lab unit, I change the DC's computer name to just ad01 and it worked.

     

    My thought is that I could have also changed the DNS entry to ad01.aruba-lab.arubalab.net if changing the computer name was not possible.  I did not test this though.



  • 4.  RE: Error trying to join AD domain - Clearpass

    Posted Mar 20, 2022 08:18 PM
    Hi everyone, 
    i am experiencing the same probblem, can you please advice how to resolve it ?

    Adding host to AD domain...
    INFO - Fetched REALM 'ARUBA.LAB.LOCAL' from domain FQDN
    'aruba.lab.local'
    INFO - Fetched the NETBIOS name 'ARUBA'
    INFO - Creating domain directories for 'ARUBA'
    Enter cpadmin's password:
    kinit succeeded but ads_sasl_spnego_gensec_bind(KRB5) failed for
    ldap/aruba.lab.local with user[cpadmin] realm[ARUBA.LAB.LOCAL]: Unexpected information received
    Failed to join domain: failed to connect to AD: Unexpected
    information received
    INFO - Restoring smb configuration
    INFO - Deleting domain directories for 'ARUBA'
    ERROR - TK_ClearPass failed to join the domain ARUBA.LAB.LOCAL with
    domain controller as aruba.lab.local
    Join domain failed

    ------------------------------
    Temur Kalandia
    ------------------------------

    Original Message


  • 5.  RE: Error trying to join AD domain - Clearpass

    Posted Mar 21, 2022 03:44 AM
    Hi again, 

    i have resolved this issue, here is the explanation :)

    first of all thank you Herman for this post : https://community.arubanetworks.com/community-home/digestviewer/viewthread?MID=18017 
    this post helped me very much. 
    when joining the AD , i was pointing domain controller name aruba.lab.local from the server manager menu:

    but it appears that instead of that , i have to point this aruba-lab.aruba.lab.local:

    after that everything is working fine :) 



    ------------------------------
    Temur Kalandia
    ------------------------------

    Original Message