Security

Reply
Frequent Contributor I
Posts: 84
Registered: ‎09-08-2015

VRRP controllers - ClearPass RADIUS NAS IP

Hi Airheads,

 

What is the best practice approach to defining ClearPass servers on a VRRP pair of controllers - specifically NAS IP? 

 

The controller has each ClearPass Pub / Sub defined using a common key, the RADIUS source interface is the Management interface of the controller.

 

ClearPass has each controller defined by Management IP address, with the common RADIUS key.

 

All is working OK, but there is a warning in the logs because the controller is sending its VRRP address as the NAS IP:

 

ERROR Common.NadClientTable - getNadClient: Unknown NadClient <Controller VRRP address>

Guru Elite
Posts: 8,759
Registered: ‎09-08-2010

Re: VRRP controllers - ClearPass RADIUS NAS IP

Define each ClearPass server plus the VIP as NADs in ClearPass.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: