Sorry it took a while to reply.
I checked the ClearPass Endpoint database and I can confirm that some devices are present with the wrong Intune ID.
I suspect a reinstall of the device causes this issue, though I'd expect the extension to update the information automatically?
I can't find any logs in the Intune extension (6.2.8) that point to an error updating the database.
Any suggestions on why this happens (the info doesn't get updated)? - So I can figure out how this can be prevented
Original Message:
Sent: May 30, 2024 07:36 AM
From: Herman Robers
Subject: Clearpass intune : HTTP attribute query returned error=404
I assume you use the Intune Device ID from a field in the client certificate? If so, check in your certificate policy (Intune) what is put in that field, or else where the Intune Device ID is stored... If you see the 404 error for HTTP based lookup, that is independent on what is in the ClearPass Endpoint database. I would find out, and make sure that you have the correct IDs to work with.
Could it be that you have clients with certificates issued before you made changes to the certificate fields? By default the Entra ID device ID is included in the certificate, not the Intune Device ID.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
Original Message:
Sent: May 30, 2024 06:15 AM
From: DavidB
Subject: Clearpass intune : HTTP attribute query returned error=404
Looked up these fauly id's in the 'Endpoint' database in the ClearPass and found the devices, but the Intune ID that the database has, does not match the Intune ID in Intune.
Seems like the database for some reason has issues updating (certain) devices
Original Message:
Sent: May 29, 2024 11:27 AM
From: DavidB
Subject: Clearpass intune : HTTP attribute query returned error=404
Hi Erik,
The connector work fine for our 4-5k other devices.
Only the freshly installed ones have issues and that's when I get to see this log in the connector (querying unknown ID's).
I've checked the Intune entries of these newly installed devices and it doesn't equal their Intune or Azure ID.
I've entered the ID to see which device it belongs to (Intune and Azure) but no hits either
Original Message:
Sent: May 29, 2024 08:27 AM
From: erik.boss
Subject: Clearpass intune : HTTP attribute query returned error=404
Hi David,
is your Intune setup right?
ClearPass Intune error 404 seems like this:
The 404 error suggests that the ID queried in Intune is not the Intune Device ID, or the device is not in the same Intune Instance, or the API permissions are not properly setup in Entra ID.
Original Message:
Sent: May 29, 2024 07:47 AM
From: DavidB
Subject: Clearpass intune : HTTP attribute query returned error=404
I have the same issue with newly installed devices.
My logs:
[2024-05-29T13:13:19.941] [ERROR] Intune - Error searching by id 46aed026-f652-43c1-996d-b9485a835a77. Request failed with status code 404
[2024-05-29T13:13:21.182] [INFO] Intune - [46aed026-f652-43c1-996d-b9485a835a77] Request for information received from ::ffff:172.17.0.1.
[2024-05-29T13:13:21.423] [ERROR] Intune - Error searching by id 46aed026-f652-43c1-996d-b9485a835a77. Request failed with status code 404
[2024-05-29T13:13:23.312] [INFO] Intune - [46aed026-f652-43c1-996d-b9485a835a77] Request for information received from ::ffff:172.17.0.1.
[2024-05-29T13:13:23.507] [ERROR] Intune - Error searching by id 46aed026-f652-43c1-996d-b9485a835a77. Request failed with status code 404
[2024-05-29T13:13:26.265] [INFO] Intune - [46aed026-f652-43c1-996d-b9485a835a77] Request for information received from ::ffff:172.17.0.1.
I don't mind sharing the ID's because they don't exist in our tenant. Neither as Intune ID or Azure ID.
At this point I have no idea where the Intune extension got the ID for this query..
Original Message:
Sent: Oct 26, 2023 04:16 PM
From: ahmetsarikaya
Subject: Clearpass intune : HTTP attribute query returned error=404
We currently have an on prem AD that we check based on a computer certificate. We are now working on doing this with Intune devices based on EAP TLS. We use 1 root CA under which the local ad and intune users receive their certificate from another "issuing". Now we get the error 404 back.
We are using the following authentication source:
If we do not use role mappings, authentication works, even though we get the same error message. Is this more because clearpass knows our certificate. However, we want to make a distinction here with the following role mapping: