As part of testing, i wish to clear the machine authentication cache on ClearPass. Is it possible?
Yes, from ClearPass ver 6.5.0 there is an option exposed in GUI to clear the machine authentication cache on the local node.
In order to clear the cache from GUI, navigate to Administration > Server Manager > Server Configuration, on the extreme right hand corner of the screen you will find the option "Clear Machine Authentication Cache".
This option will clear the Machine Authentication Cache on local node (the MAC exist within BATTERY and is replicated across a ZONE)
We verified by performing a user authentication post machine authentication. In the screenshot below, we can see that since the "Machine Authentication" was successful and cached for the user, both the roles "[User Authenticated] and [Machine Authenticated]" are present.
We then performed the machine authentication cache cleanup and performed a user authentication again.
This time we can see that the "[Machine Authenticated]" role is no longer there. This confirms that the cache is cleared.
This is good for clearning either per node or system-wide (appears to be a system wide option in 6.7) but is there a way to clear a specific targeted machine auth vs the entire cache? Also can you view the machine auth cache DB to dteremine time left for systems?
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.