Security

Reply
MVP
Posts: 3,015
Registered: ‎10-25-2011

blacklist user upon too many password failures

It is possible to put this rule on the clearpass?

We have a clearpass service with mac acaching authentication(the mac caching is per day)

 

We want that for example the day 2 if the user try to log in with his user in pass  in the log in  link that if he tries like 3 times and put the incorrect password  or maybe someone that has never registered try to do so to guest a password he get blacklisted

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
MVP
Posts: 4,307
Registered: ‎07-20-2011

Re: blacklist user upon too many password failures

You need to do this at the controller level
http://www.arubanetworks.com/techdocs/ArubaOS_63_Web_Help/Content/ArubaFrameStyles/New_WIP/Client_Blacklisting.htm#new_wip_1365762209_1016848

What source are you authenticating against ?

Get Outlook for iOS
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
MVP
Posts: 3,015
Registered: ‎10-25-2011

Re: blacklist user upon too many password failures

Hello Victor

I already did that before opening this tread i mean this

 

To set the authentication failure threshold via the command-line interface, access the CLI in config mode and issue the following commands:
aaa authentication {captive-portal|dot1x|mac|vpn} <profile>
   max-authentication-failures <number>

But it didnt work with clearpass...  It does work with a captive portal under controller, but not when you using captive portal with clearpass...

 

Cheesr

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
MVP
Posts: 3,015
Registered: ‎10-25-2011

Re: blacklist user upon too many password failures

Any ideas???

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Search Airheads
Showing results for 
Search instead for 
Did you mean: