Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Black List Clients

This thread has been viewed 8 times

  • 1.  Black List Clients

    Posted Oct 03, 2014 03:01 PM

    Hello,

     

    We have two BYOD mobile clients that are automatically blacklisted.

    The reason is "User-Defined". This translates to"Manually Blacklisted". We are not manually blacklisting our clients.

    <WARN> |AP 2EA-016@172.20.82.89 stm| Blacklist add: 04:db:56:1f:01:0d: Reason: user-defined.

    We are using version 6.3.1.6 and 7210 controllers.

     

    Any ideas on how to correct this issue.

    Thanks.

     

    John B.


    #7210


  • 2.  RE: Black List Clients
    Best Answer

    EMPLOYEE
    Posted Oct 03, 2014 03:16 PM

    Interesting.  Can you do a show audit-trail and see if someone added them in there manually?



  • 3.  RE: Black List Clients

    Posted Oct 03, 2014 03:53 PM

    I ran the command, show audit-trail and discovered our security NAC was automatically blacklisting the clients. Thank you. for your help.

     



  • 4.  RE: Black List Clients

    EMPLOYEE
    Posted Oct 03, 2014 03:56 PM

    "user-defined" does not always mean a manual blacklist.  Please see the explanations here:  https://arubanetworkskb.secure.force.com/pkb/articles/FAQ/Why-do-few-wireless-clients-experience-problem-in-connecting-to-an-SSID-where-other-clients-have-no-issue



  • 5.  RE: Black List Clients

    Posted Oct 03, 2014 03:49 PM

     

    What does the "show ap blacklist-clients" command say on the controller.  I've seen this differ from what's in the logs.