Security

Reply
Contributor II
Posts: 49
Registered: ‎05-12-2014

Guest Blacklisting

Hi,<br>I would like to implement the blacklist for users in public captive portal using ClearPass guest, to prevent brute force attacks, anyone know how?<br>Thanks
Ricardo Luis Cañavate García
ACCP
Guru Elite
Posts: 20,760
Registered: ‎03-29-2007

Re: Guest Blacklisting

At the Virtual AP level under advanced, you would enable "Station Blacklisting" (the master switch).  You would also configure the authentication failure blacklist time, which says how long the user would not be able to associate (Zero would be permanent).

blacklist-vap.JPG

 

In the Captive Portal Authentication Profile, you would also configure "Max Authentication Failures" which would indicate how many times the user would have to fail authentication before they are blacklisted (zero turns off blacklisting).

 

blacklist-cp.JPG



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Contributor II
Posts: 49
Registered: ‎05-12-2014

Re: Guest Blacklisting

Many thanks Colin for the fast answer.
I forgot tell that we are using Instant AP with External Captive Portal from Clearpass, it would be the same?
Thanks.

Ricardo Luis Cañavate García
ACCP
Guru Elite
Posts: 20,760
Registered: ‎03-29-2007

Re: Guest Blacklisting

It is different for Instant.

 

Please see here:  http://www.arubanetworks.com/techdocs/Instant_40_WebHelp/InstantWebHelp.htm#UG_files/Authentication/DynamicBlacklist.htm?Highlight=blacklist

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Contributor II
Posts: 49
Registered: ‎05-12-2014

Re: Guest Blacklisting

Thanks! I thought it would be different when use an external portal. :smileywink:

Ricardo Luis Cañavate García
ACCP
Search Airheads
Showing results for 
Search instead for 
Did you mean: