I have two questions :)
The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?
Thanks in advance
Yes, buts it not currently exposed for direct real-time access, it can be access as part of 'collect-logs' then reviewed offline. There is an enhancement request to expose this data under syslog in a later release TBD.
Thanks Danny. What is the name of the particular log file?
Thanks Danny. Looking through that file now.
The standard reauth interval is typically a setting on the switch. Most switches access the IETF:Session-Timeout attribute with a number in seconds for the re-auth interval, for some switches you will need to configure if the RADIUS supplied timeout is honored.
Thanks Herman. By default on ArubaOS CX 6300 [firmware 10.05.0021] the dot1x and mac-auth authenticator REAUTH is disabled.
You can add the reauthentication interval in the enforcement profile when you use Donwloadable User Roles
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.