Wireless Access

We're seeing hourly re-authentications in clearpass hitting our wireless 802.1X service. Anyone else seen this behavior and know the cause/solution?

This is only occurring to one of our offices. Have mobility master managing a pair of mobility controllers for each office, with Aruba/HPE switches and Clearpass appliance at each located in a cluster. 

------------------------------
Matthew Stogsdill
------------------------------

See if it is on a timer:

(Babarella2) #   show user ip 192.168.1.248 | include reauth
This operation can take a while depending on number of users. Please be patient ....
phy_type: a-VHT-40, l3 reauth: 0, BW Contract: up:0 down:0, user-how: 1
Timers: L3 reauth 0, mac reauth 0 (Reason: ), dot1x reauth 0 (Reason: )
Number of reauthentication attempts: mac reauth 0, dot1x reauth 0​

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Oct 07, 2021 11:18 AM
From: Matthew Stogsdill
Subject: wireless 802.1X service re-authentication

We're seeing hourly re-authentications in clearpass hitting our wireless 802.1X service. Anyone else seen this behavior and know the cause/solution?

This is only occurring to one of our offices. Have mobility master managing a pair of mobility controllers for each office, with Aruba/HPE switches and Clearpass appliance at each located in a cluster. 

------------------------------
Matthew Stogsdill
------------------------------

Silly question but your not sending a session timeout of 3600 back from ClearPass are you for access accepts from that controller?

Also on the controller normally there’s a default session timeout of 1 day ( lots of seconds) perhaps that was changed to 3600


a


Original Message:
Sent: 10/7/2021 11:19:00 AM
From: mstogsdill
Subject: wireless 802.1X service re-authentication

We're seeing hourly re-authentications in clearpass hitting our wireless 802.1X service. Anyone else seen this behavior and know the cause/solution?

This is only occurring to one of our offices. Have mobility master managing a pair of mobility controllers for each office, with Aruba/HPE switches and Clearpass appliance at each located in a cluster. 

------------------------------
Matthew Stogsdill
------------------------------

Original Message:
Sent: 10/7/2021 12:56:00 PM
From: alexs-nd
Subject: RE: wireless 802.1X service re-authentication

Silly question but your not sending a session timeout of 3600 back from ClearPass are you for access accepts from that controller?

Also on the controller normally there’s a default session timeout of 1 day ( lots of seconds) perhaps that was changed to 3600


a


Original Message:
Sent: 10/7/2021 11:19:00 AM
From: mstogsdill
Subject: wireless 802.1X service re-authentication

We're seeing hourly re-authentications in clearpass hitting our wireless 802.1X service. Anyone else seen this behavior and know the cause/solution?

This is only occurring to one of our offices. Have mobility master managing a pair of mobility controllers for each office, with Aruba/HPE switches and Clearpass appliance at each located in a cluster. 

------------------------------
Matthew Stogsdill
------------------------------