Security

last person joined: 2 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

clearpass 6.8.6 jamf 3.0.1

  • 1.  clearpass 6.8.6 jamf 3.0.1

    Posted 11 days ago
    Curently runniing jamf extension on a dev cppm server cluster( 6.9.3) and its fine.

    Have ported config to our production cluster (6.8.6)  and get the following error

    [2020-11-17T21:53:44.281] [INFO] JAMF - SSL Verification Enabled. (Config: "verifySSLCerts": true)
    [2020-11-17T21:53:44.287] [INFO] JAMF - Initalizing JAMF extension...
    [2020-11-17T21:53:44.288] [INFO] JAMF - Stats tracking is enabled.
    [2020-11-17T21:53:44.290] [INFO] JAMF - Starting stats web service...
    [2020-11-17T21:53:44.292] [INFO] JAMF - Stats web server listening on port 8080.
    [2020-11-17T21:53:44.317] [INFO] JAMF - Next endpoint sync is scheduled at Tue Nov 17 2020 22:00:00 GMT+0000.
    [2020-11-17T21:53:44.326] [INFO] JAMF - Stats database configured. Stats logging starting now.
    [2020-11-17T21:53:44.334] [ERROR] JAMF - Error loading version information. Request failed with status code 403
    [2020-11-17T21:53:44.334] [ERROR] JAMF - "<!DOCTYPE html><html>\n  <head>\n    <title>\n      Error 403 (Forbidden)\n    </title>\n    <script language=\"javascript\">\n        function reloadPage() {\n            var locHref = window.location.protocol + \"//\" + window.location.hostname;\n            window.location.href = locHref;\n        }\n    </script>\n  </head>\n  <body onload=\"setTimeout(reloadPage, 5000);\">\n    <table border=0 cellpadding=0 cellspacing=0 height=100% width=100%>\n      <tr style=\"height:20%\">\n        <td width=10%> \n          &nbsp;\n        </td>\n      </tr>\n      <tr style=\"height:10%\">\n        <td style=\"font-size: 25px;padding-left: 20%;\">\n\t   Error 403: Forbidden\n        </td>\n      </tr>\n      <tr style=\"height:10%; vertical-align: top;\">\n        <td style=\"font-size: 20px;padding-left: 20%;\">\n          Error in accessing application. Redirecting in 5 seconds...\n        </td>\n      </tr>\n      <tr style=\"height:10%; vertical-align: top;\">\n        <td style=\"font-size: 18px;padding-left: 20%;\">\n\t You are not permitted to access the application. Please contact your network administrator for further assistance.\n        </td>\n      </tr>\n      <tr>\n        <td width=10%> \n          &nbsp;\n        </td>\n      </tr>\n    </table>\n  </body>\n</html>\n"
    [2020-11-17T21:53:44.791] [INFO] JAMF - Logged in to skyhook.
    
    200 lines shown

    just wondering  what is generating the error . Have checked all the credentials



    ------------------------------
    Alex Sharaz
    ------------------------------


  • 2.  RE: clearpass 6.8.6 jamf 3.0.1

    Posted 10 days ago
    do you have check if the CPPM have access to internet ?

    ------------------------------
    PowerArubaSW : Powershell Module to use Aruba Switch API for Vlan, VlanPorts, LACP, LLDP...

    PowerArubaCP: Powershell Module to use ClearPass API (create NAD, Guest...)

    PowerArubaCX: Powershell Module to use ArubaCX API (get interface/vlan/ports info)..

    ACEP / ACMX #107 / ACDX #1281
    ------------------------------



  • 3.  RE: clearpass 6.8.6 jamf 3.0.1

    Posted 9 days ago
    Hi
    Yup no problem with internet access

    Sent from my iPhone





  • 4.  RE: clearpass 6.8.6 jamf 3.0.1

    Posted 9 days ago
    Alex,

    Is this node going via a PROXY to get to WWW?

    ------------------------------
    Danny Jump
    ------------------------------



  • 5.  RE: clearpass 6.8.6 jamf 3.0.1

    Posted 9 days ago
    Nope direct 

    Sent from my iPhone





  • 6.  RE: clearpass 6.8.6 jamf 3.0.1

    Posted 8 days ago
    Alex,

    Looking at the log above, I see a 403, HTTP-403, this is an authorization issue {401 would typically be authentication} , are you using the same creds from TEST to PROD?

    One other query, do you have an CPPM Application controls in place??


    ------------------------------
    Danny Jump
    ------------------------------