Security

Reply
Occasional Contributor II
Posts: 78
Registered: ‎06-03-2014

No Radius Authentication (Intermittent)

1) Have anyone experience that authentication is not being trigger sometimes? Everything is work fine, Radius authentcation using EAP-TLS works but there are times where no authentication is being triggered. Sometimes it happens on machine auth sometimes it happens on user auth

 

2) another issue is that the laptop has 2 user domain account. however user auth is only being triggered when I log into 1 of the accounts, when I log off and login using another account, user radius authentication won't be triggered no matter what. I am pretty sure 802.1x network adapter setting are enabled and both certs are present.

 

anyone experience such issue? is there some settings which I could change in NAD or clearpass itself? Thanks

Guru Elite
Posts: 8,330
Registered: ‎09-08-2010

Re: No Radius Authentication (Intermittent)

Is the network configuration set by group policy or at the local machine level?

Sent from Nine

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 78
Registered: ‎06-03-2014

Re: No Radius Authentication (Intermittent)

thanks for the quick reply.

 

it's via GPO. but i am pretty sure the it's enabled on the other account.

Guru Elite
Posts: 8,330
Registered: ‎09-08-2010

Re: No Radius Authentication (Intermittent)

Is the GPO configured for machine and user?

Has the user you're testing with logged in to the machine before?

Is this wired or wireless?


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 78
Registered: ‎06-03-2014

Re: No Radius Authentication (Intermittent)

yes configured for both machine and user auth.. if not the other user probably can't work..

yes logged in before.. both machine and user cert is there.. i am thinking could it be SEP that could have blocked the radius traffic for this user. could that be that case? what other possible reason?

 

how about the case where sometimes no authentication is being trigger? need to try a couple of times or reboot the machine. this doesn't happen frequenly but still observed quite a few times.

Guru Elite
Posts: 8,330
Registered: ‎09-08-2010

Re: No Radius Authentication (Intermittent)

Authentication is triggered by the NAD. For wired, it is triggered on a port up and for wireless it's triggered after association. Be sure SEP isn't blocking EAPOL.

https://support.symantec.com/en_US/article.TECH203497.html

Is this wired or wireless that you're seeing the issue?
Are the NIC drivers up to date?
Are you seeing similar issues with Macs?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 78
Registered: ‎06-03-2014

Re: No Radius Authentication (Intermittent)

[ Edited ]

noted on the SEP, this could be the reason.

 

Is this wired or wireless that you're seeing the issue? - wired
Are the NIC drivers up to date? - it should be up to date though not the latest
Are you seeing similar issues with Macs?- not using macs

 

as for the sometimes no radius authentcation issue, i can see from the switch that the client is 'authenticating' however after awhile it fails, and i don't see any log from the access tracker. as mentioned i don't see this behavior very often, i am just wondering what could cause such issue.

 

i also have another issue where machine authentication is not being triggered upon log out. this behavior also happens sometime. only upon rebooting the machine, the machine auth is being triggered.

Search Airheads
Showing results for 
Search instead for 
Did you mean: