Can your monitoring system send test authentications and evaluate the responses? And send an alarm if no response is received?
------------------------------
Regards,
Waldemar
ACCX # 1377, ACEP, ACX - Network Security
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------
Original Message:
Sent: Jun 13, 2025 10:39 AM
From: NHN
Subject: Any mechanism to identify if NAC-related configuration is removed from NAD(switch) device
There is an option in ClearPass Insight to configure alerts via email or SMS. I never tried, but may help to resolve your issue.
------------------------------
Harendra | ACEX165 | ACEP | CWDP | CWSP
If you find my answer useful, consider giving kudos and/or mark it as the solution.
Original Message:
Sent: Jun 13, 2025 06:07 AM
From: happyrp
Subject: Any mechanism to identify if NAC-related configuration is removed from NAD(switch) device
Hello
Is there any mechanism we can apply to automatically identify if RADIUS/NAC configuration has been removed from a switch?
As of now, we can only know this:
- If incoming RADIUS requests stops from a particular switch which we only know at the later time OR
- Through configured SPLUNK alert if there are any alternation in switch configuration