Security

last person joined: 6 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Issue with hidden SSID with CPPM and Airwatch

This thread has been viewed 0 times

  • 1.  Issue with hidden SSID with CPPM and Airwatch

    Posted May 29, 2014 11:16 AM

    Hi Community,

     

    We have tried to integrate airwatch to our network and we find it strange that when we hide the ssid, clearpass cannot check if the client (iphone) is managed by airwatch.

     

    If the ssid is not hidden, it works just fine. We can  see under the endpoints that the client is managed on airwatch. When we tried to hide the ssid (delete the client entry from endpointsand from the iphone, we delete the profile that was pushed to the client from airwatch) then pushed the config from airwatch to the iphone(we have to tick the hidden ssid as well on airwatch), the client can see the ssid but for some reason we cannot find the attribute that the client is managed by airwatch. And to add to it, once we turn off the wifi of the client and turn it back on, it cannot find the ssid.

     

    I was hoping if anyone was able to encounter similar issue and can help.

     

     

    Thanks

     

    Oliver



  • 2.  RE: Issue with hidden SSID with CPPM and Airwatch

    EMPLOYEE
    Posted May 29, 2014 12:11 PM

    Oliverm

     

    The client sync/create its the entry in the endpoints database when it synchs with Airwatch.  If you delete the Endpoint entry, it should only put it back into the Endpoints database if you (1) create it manually (2) wait an hour for the endpoints database to synch with Airwatch (3) or Click on Update from the Airwatch definition in ClearPass.  If you do nothing, the client will not be in the endpoints database and we cannot enforce policy on that client, and it will seem foreign.  This could match your situation or other things could be going on...



  • 3.  RE: Issue with hidden SSID with CPPM and Airwatch

    Posted May 29, 2014 01:33 PM

    Hi Cjoseph,

     

    Is there a way for us to check from cppm if there is a communication with airwatch? We waited more than an hour if it does sync and we also tried to Update from airwatch definition. I was wondering if it is the username/password or API that may have caused it.

     

    I'll try again and see how it goes.

     

    Thanks 

     

    Oliver Mina



  • 4.  RE: Issue with hidden SSID with CPPM and Airwatch

    EMPLOYEE
    Posted May 29, 2014 03:32 PM

    You can look in the Event Viewer:  If an Endpoint was modified by Apiadmin, that is a change probably by Airwatch:

     

    apiadmin.png

     

    Did you already see the ClearPass MDM Integration technote here? It has other ways you can detech that changes were made by Airwatch http://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/Default.aspx?EntryId=7961



  • 5.  RE: Issue with hidden SSID with CPPM and Airwatch

    Posted May 29, 2014 11:58 PM

    You can also see Airwatch sync events in Event Viewer, which is in the same area as Audit Viewer (see Colin's pic).  Filter by "endpoint" and you should see the sync events.

     

    FYI, there is a known bug with MDM synchronization stopping in CPPM, which I've experienced myself.  If you don't see synchronization occuring, double-check your Endpoint Context Server configuration (URL, API username/password).  Modifying these settings forces synchronization with Airwatch.  If still not synchronization occurs, the restart the Async network service.