Security

I have a problem with the device onboarding.
Windows devices are onboarding successfully but IOS and Android not properly downloading certificates.
The onboard Portal is configured with Publically Natted IP to ClearPass.
Devices are able to open the portal and go through the registration process. Clearpass is issuing certificates for devices.

Clearpass is loaded with Entry + Onboard licenses.

I am getting the below error on the Application Logs.


 Please advice on this.

------------------------------
Harendra
ACDX|ACEP|CWSP|
------------------------------

I think that warning log is related to the point that Android does not allow Apps to read the device MAC address, and it may possibly be ignored.

Please work with Aruba TAC on your problem, with in your mind that this warning message is unrelated to the point that you can't complete the onboard process.

For Onboard to work reliably, make sure all certificates are in place and trusted, so no certificate warnings should be shown.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------

Original Message:
Sent: Dec 08, 2022 09:40 PM
From: harendra nishshanka
Subject: ClearPass Onboard - device_id field is invalid

I have a problem with the device onboarding.
Windows devices are onboarding successfully but IOS and Android not properly downloading certificates.
The onboard Portal is configured with Publically Natted IP to ClearPass.
Devices are able to open the portal and go through the registration process. Clearpass is issuing certificates for devices.

Clearpass is loaded with Entry + Onboard licenses.

I am getting the below error on the Application Logs.

 Please advice on this.

------------------------------
Harendra
ACDX|ACEP|CWSP|
------------------------------

Hi Herman,

I am not getting any Certificate warnings and am able to Onboard the windows machine successfully. I have verified certificates in windows and all are in place properly. My only concern is using Public NAT IP for the Onboard portal URL.

I will work with Aruba TAC and will post the results here.

Thanks

------------------------------
Harendra
ACDX|ACEP|CWSP|
------------------------------

Original Message:
Sent: Dec 12, 2022 07:37 AM
From: Herman Robers
Subject: ClearPass Onboard - device_id field is invalid

I think that warning log is related to the point that Android does not allow Apps to read the device MAC address, and it may possibly be ignored.

Please work with Aruba TAC on your problem, with in your mind that this warning message is unrelated to the point that you can't complete the onboard process.

For Onboard to work reliably, make sure all certificates are in place and trusted, so no certificate warnings should be shown.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.

Original Message:
Sent: Dec 08, 2022 09:40 PM
From: harendra nishshanka
Subject: ClearPass Onboard - device_id field is invalid

I have a problem with the device onboarding.
Windows devices are onboarding successfully but IOS and Android not properly downloading certificates.
The onboard Portal is configured with Publically Natted IP to ClearPass.
Devices are able to open the portal and go through the registration process. Clearpass is issuing certificates for devices.

Clearpass is loaded with Entry + Onboard licenses.

I am getting the below error on the Application Logs.

 Please advice on this.

------------------------------
Harendra
ACDX|ACEP|CWSP|
------------------------------