Security

 View Only
last person joined: 10 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

ClearPass local admin login with SSO enabled

This thread has been viewed 13 times
  • 1.  ClearPass local admin login with SSO enabled

    Posted Jun 24, 2020 01:40 PM

    I have SSO enabled for GuestOperator, but would like to enable for Policy Manager. 

    How can I log into Policy Manager with a local admin account when SSO is enabled?

    I am redirected to our SSO sign-in page, of course, so I don't see a way I could use an account local to ClearPass.

     

    Thanks in advance!



  • 2.  RE: ClearPass local admin login with SSO enabled

    Posted Jun 24, 2020 01:48 PM

    You cannot. You'd have to disable the SSO configuration.



  • 3.  RE: ClearPass local admin login with SSO enabled

    Posted Jun 24, 2020 01:53 PM

    I see. So, if my IDP is down or unreachable for some reason, I am locked out of ClearPass (assuming SSO is enabled for Policy Manager).



  • 4.  RE: ClearPass local admin login with SSO enabled
    Best Answer

    Posted Jun 24, 2020 01:57 PM

    Yes, it's no different than any other SP.



  • 5.  RE: ClearPass local admin login with SSO enabled

    Posted Jun 24, 2020 02:01 PM

    Understood. Thanks for the quick reply!



  • 6.  RE: ClearPass local admin login with SSO enabled

    Posted 27 days ago

    Hello.

    From the CLI, you can enter the following although this will disable sso and you will need to reconfigure partially in the SSO configuration section before it can be used again.

     system sso-reset

    Just learned this from TAC tonight when I got kicked out of my LAB environment. 

    Thanks
    Ken