Security

last person joined: 11 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Lexmark Printer passes MAC auth but is not reachable on the LAN?

This thread has been viewed 1 times

  • 1.  Lexmark Printer passes MAC auth but is not reachable on the LAN?

    Posted Sep 06, 2017 10:10 AM

    We have a Lexmark printer that is passing MAC authentication and being assigned the correct VLAN. It is even pulling DHCP. But I'm not able to ping the device, and it doesn't show up in my arp table on my Cisco switch. If I remove the NAC config, the printer works just fine. I'm not sure why CPPM is causing this issue even though it's successfully authenticating? 

     

     



  • 2.  RE: Lexmark Printer passes MAC auth but is not reachable on the LAN?

    EMPLOYEE
    Posted Sep 06, 2017 10:21 AM
    ClearPass is not inline in the datapath so it's there's something going on with the switch.


  • 3.  RE: Lexmark Printer passes MAC auth but is not reachable on the LAN?

    Posted Sep 06, 2017 10:23 AM

    But why would it be this one port on this one switch? There are two devices conencted to this port, both printers, printer one is fine the entire time, but this Lexmark printer will never communicate. 

     

    This is the relevant config on the port. Same as I have on thousands of other ports. 

     

    authentication host-mode multi-auth
    authentication order dot1x mab
    authentication priority dot1x mab
    authentication port-control auto
    authentication periodic
    authentication timer reauthenticate server
    mab
    dot1x pae authenticator
    dot1x timeout server-timeout 10
    dot1x timeout tx-period 3