Security

Hello all: 

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event? 

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

What CPPM version are you running?  

6.8.x includes warnings when it is unable to communicate with AD.   I'm assuming you're talking about AD Domains?

Source	RADIUS
Level	WARN
Category	AD Connection
Action	Unknown
Timestamp	Nov 10, 2021 05:00:51 EST
Description	Unable to establish connection with ...

Best of luck, 

--Raf

------------------------------
RafaelHinojosa
------------------------------

Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all: 

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event? 

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

6.9 version.  

This is when the CCPM node shows Domain Status: offline and 802.1x authentications are failing and showing MASCHAP: AD status:No logon servers (0x000005e).  

on the cli 

[appadmin@myccpm-7]# show domain

=======================================================
Domain Information
-------------------------------------------------------
Domain Name : mydomain.local
Domain NETBIOS Name : mydomain
Domain Server Ip Address : 192.168.1.247
Domain Server Name : dc.mydomain.local
Domain Status : offline
--------------------------------------

we want to get notify as soon as the CCPM node shows Domain Status: offline

------------------------------
Cheers!
MG
------------------------------

Original Message:
Sent: Nov 12, 2021 01:20 PM
From: Rafael Hinojosa
Subject: ClearPass + offline Domain status + alerts

What CPPM version are you running?  

6.8.x includes warnings when it is unable to communicate with AD.   I'm assuming you're talking about AD Domains?

Source	RADIUS
Level	WARN
Category	AD Connection
Action	Unknown
Timestamp	Nov 10, 2021 05:00:51 EST
Description	Unable to establish connection with ...

Best of luck, 

--Raf

------------------------------
RafaelHinojosa

Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all: 

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event? 

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

Hrm,

I'm not sure...

You might be able to use Insight to configure an Alert to be sent via e-mail or SMS; however, it looks as if (in 6.8) the only options are for ERROR level System Events - not sure if that is the case in 6.9 as well.  I setup a test, so I'll see if it triggers when our AD team performs any update / upgrade that takes an AD server offline momentarily.  

When we were having issues way back in the day with CPPM & AD / the SAMBA service.  We setup a separate EAPOL Test to authenticate at one minute intervals to the CPPM server(s).  When the setup failed 2, or more consecutive tests we sent SMS & e-mail notifications.  This was a separate system, so it could have issues all of its own, but it did what we needed it to do & is still in use today.  

Best of luck ,

--Raf



------------------------------
RafaelHinojosa
------------------------------

Original Message:
Sent: Nov 12, 2021 04:23 PM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

6.9 version.  

This is when the CCPM node shows Domain Status: offline and 802.1x authentications are failing and showing MASCHAP: AD status:No logon servers (0x000005e).  

on the cli 

[appadmin@myccpm-7]# show domain

=======================================================
Domain Information
-------------------------------------------------------
Domain Name : mydomain.local
Domain NETBIOS Name : mydomain
Domain Server Ip Address : 192.168.1.247
Domain Server Name : dc.mydomain.local
Domain Status : offline
--------------------------------------

we want to get notify as soon as the CCPM node shows Domain Status: offline

------------------------------
Cheers!
MG

Original Message:
Sent: Nov 12, 2021 01:20 PM
From: Rafael Hinojosa
Subject: ClearPass + offline Domain status + alerts

What CPPM version are you running?  

6.8.x includes warnings when it is unable to communicate with AD.   I'm assuming you're talking about AD Domains?

Source	RADIUS
Level	WARN
Category	AD Connection
Action	Unknown
Timestamp	Nov 10, 2021 05:00:51 EST
Description	Unable to establish connection with ...

Best of luck, 

--Raf

------------------------------
RafaelHinojosa

Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all: 

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event? 

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

Hello - I'm curious what version of 6.9 are you running? I've been experiencing this issue lately and wondering if this issue is possibly related to the release version. I'm running v6.9.10 on a c3010 that loses domain weekly at different time, and I'm running a much older CPPM on v6.6.10 that isn't experiencing this issue at all.

Thanks!

-Frank
Original Message:
Sent: Nov 12, 2021 04:23 PM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

6.9 version.

This is when the CCPM node shows Domain Status: offline and 802.1x authentications are failing and showing MASCHAP: AD status:No logon servers (0x000005e).

on the cli

[appadmin@myccpm-7]# show domain

=======================================================
Domain Information
-------------------------------------------------------
Domain Name : mydomain.local
Domain NETBIOS Name : mydomain
Domain Server Ip Address : 192.168.1.247
Domain Server Name : dc.mydomain.local
Domain Status : offline
--------------------------------------

we want to get notify as soon as the CCPM node shows Domain Status: offline

------------------------------
Cheers!
MG

Original Message:
Sent: Nov 12, 2021 01:20 PM
From: Rafael Hinojosa
Subject: ClearPass + offline Domain status + alerts

What CPPM version are you running?  

6.8.x includes warnings when it is unable to communicate with AD.   I'm assuming you're talking about AD Domains?

Source	RADIUS
Level	WARN
Category	AD Connection
Action	Unknown
Timestamp	Nov 10, 2021 05:00:51 EST
Description	Unable to establish connection with ...

Best of luck, 

--Raf

------------------------------
RafaelHinojosa

Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all: 

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event? 

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

Hi guys, we are facing same issue. do you have a solution for this?

we have sudden offline show domain and have no way to get ahead of knowing this.
Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all:

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event?

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

Nope, haven't been able to configure an alert within CPPM Insight.  Maybe a third party app?? too bad they don't have an option.

------------------------------
Cheers!
MG
------------------------------

Original Message:
Sent: Oct 18, 2022 06:06 AM
From: Ricky Lee
Subject: ClearPass + offline Domain status + alerts

Hi guys, we are facing same issue. do you have a solution for this?

we have sudden offline show domain and have no way to get ahead of knowing this.
Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all:

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event?

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------

is it possible to get this info from SNMP/syslog?
Original Message:
Sent: Oct 18, 2022 09:26 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Nope, haven't been able to configure an alert within CPPM Insight.  Maybe a third party app?? too bad they don't have an option.

------------------------------
Cheers!
MG

Original Message:
Sent: Oct 18, 2022 06:06 AM
From: Ricky Lee
Subject: ClearPass + offline Domain status + alerts

Hi guys, we are facing same issue. do you have a solution for this?

we have sudden offline show domain and have no way to get ahead of knowing this.
Original Message:
Sent: Nov 12, 2021 11:41 AM
From: Mauricio Guzman
Subject: ClearPass + offline Domain status + alerts

Hello all:

I would like to generate an alert when one of my CPPM is domain "offline" but can't find a straight forward way of doing it.  Is there an error code for this specific event?

Thanks,
MG

------------------------------
Cheers!
MG
------------------------------