Security

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

Yes, buts it not currently exposed for direct real-time access, it can be access as part of 'collect-logs' then reviewed offline. There is an enhancement request to expose this data under syslog in a later release TBD.

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

Thanks Danny. What is the name of the particular log file?

Yes, buts it not currently exposed for direct real-time access, it can be access as part of 'collect-logs' then reviewed offline. There is an enhancement request to expose this data under syslog in a later release TBD.

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

cmdctrl.log

Thanks Danny. What is the name of the particular log file?

Yes, buts it not currently exposed for direct real-time access, it can be access as part of 'collect-logs' then reviewed offline. There is an enhancement request to expose this data under syslog in a later release TBD.

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

The standard reauth interval is typically a setting on the switch. Most switches access the IETF:Session-Timeout attribute with a number in seconds for the re-auth interval, for some switches you will need to configure if the RADIUS supplied timeout is honored.

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col

Thanks Herman. By default on ArubaOS CX 6300 [firmware 10.05.0021] the dot1x and mac-auth authenticator REAUTH is disabled.

The standard reauth interval is typically a setting on the switch. Most switches access the IETF:Session-Timeout attribute with a number in seconds for the re-auth interval, for some switches you will need to configure if the RADIUS supplied timeout is honored.

Hi,

I have two questions :)

1. Is there a log on ClearPass that shows when it sends RADIUS Terminate Session or Bounce Port messages?
2. Also, is there a standard Reauth period enforced by ClearPass on MAC Auth sessions?

The use case is MAC Auth on Aruba CX switch. AAA Port Access MAC Auth on the switch ports is configured to not while the Client is still connected. I want to see if ClearPass is periodically ending the Auth session?

Thanks in advance

Col