Security

last person joined: 19 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Traffic encryption between Aruba controller & Clearpass for RADIUS

This thread has been viewed 0 times

  • 1.  Traffic encryption between Aruba controller & Clearpass for RADIUS

    Posted May 03, 2017 07:22 AM

    Hi

     

    I have done a fair bit of reading and cannot find a definitive answer to my query.

     

    I understand that RADIUS traffic between Clearpass and a controller is not encrypted. In order to encrypt this traffic it would require some IPSec config between the 2 devices.

     

    Is it possible to configure an IPSec VPN between Clearpass and controller in order to send the traffic over the internet?

     

    Thanks in advance.



  • 2.  RE: Traffic encryption between Aruba controller & Clearpass for RADIUS

    EMPLOYEE
    Posted May 03, 2017 07:35 AM
    The RADIUS protocol by standard provides encyrption, but it's very weak (MD5).

    You can configure IPSec tunnels if necessary.


  • 3.  RE: Traffic encryption between Aruba controller & Clearpass for RADIUS

    Posted May 03, 2017 07:41 AM

    Thanks for your reply.

     

    Are you aware of any documentation surrounding this?



  • 4.  RE: Traffic encryption between Aruba controller & Clearpass for RADIUS

    EMPLOYEE
    Posted May 03, 2017 07:49 AM
    I don't believe that scenario is something we have documented. The controller and ClearPass user guides cover setting up IPSec but you may want to reach out to your Aruba or partner team.